Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v2013.4.14.74 par Nicolas Coolman, Update du 13/04/2013
Run by D at 01/09/2013 13:32:16
State : Nouvelle version disponible
High Elevated Privileges : OK
UAC : Deactivate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v29.0.1547.62 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows Vista Home Premium Edition, 64-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
Windows Automatic Updates : OK
---\\ System Protection
AVG 2013 v13.0.3222
Malwarebytes Anti-Malware version 1.75.0.1300
---\\ System Optimizer
CCleaner v3.17
---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 17
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4093 MB (41% free)
System Restore: Activ� (Enable)
System drive C: has 233 GB (51%) free of 451 GB
---\\ Logged in mode
~ Computer Name: PC-DE-D
~ User Name: D
~ All Users Names: UpdatusUser, D, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\D\AppData\Roaming\
~ %Desktop% : C:\Users\D\Desktop\
~ %Favorites% : C:\Users\D\Favorites\
~ %LocalAppData% : C:\Users\D\AppData\Local\
~ %StartMenu% : C:\Users\D\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 233 Go of 451 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 14 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 335 Go of 466 Go)
G:\ CD-ROM drive (Free 0 Go of 0 Go)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 08:10:17.) -- C:\Windows\Explorer.exe [3079168]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.21/01/2008 - 03:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.CA87556BBA37D1B4F67C331186618673] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.25/07/2013 - 04:30:49.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 08:11:08.) -- C:\Windows\System32\Winlogon.exe [405504]
[MD5.C4F6CE6087760AD70960C9EB130E7943] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.03/01/2012 - 15:25:21.) -- C:\Windows\system32\Drivers\AFD.sys [404992]
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 08:15:00.) -- C:\Windows\system32\Drivers\atapi.sys [20952]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 06:34:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 16:14:19.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 06:39:41.) -- C:\Windows\system32\Drivers\HDAudBus.sys [948736]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:46:59.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.1485811B320FF8C7EDAD1CAEBB1C6C2B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:39:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135680]
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 06:42:33.) -- C:\Windows\system32\Drivers\netBT.sys [248320]
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.03/03/2013 - 20:13:14.) -- C:\Windows\system32\Drivers\ntfs.sys [1513320]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parall�le.) (.02/11/2006 - 10:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/04/2009 - 06:43:38.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 06:42:19.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 06:43:00.) -- C:\Windows\system32\Drivers\tdx.sys [94720]
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.21/08/2012 - 12:50:57.) -- C:\Windows\system32\Drivers\volsnap.sys [267648]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/1333
~ Mes musiques (My Musics) : 463/4032
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/593
~ Mon Bureau (My Desktop) : 1/14
~ Menu demarrer (Programs) : 1/44
~ Hidden Files: Scanned in 00mn 02s
---\\ Processus lanc�s
[MD5.C72FB9CC856ECFF3B6459B27CB674638] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\iSlim310\Monitor.exe [323584] [PID.2560]
[MD5.8FEDBE7A5D3E5F91FD4B96DAFA4DD197] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1199576] [PID.2732]
[MD5.672593A4AAAB8DC8C0A5C4C1AD0A6048] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18680424] [PID.2740]
[MD5.12F7274EFF53BD6AA89D7608CFE1D678] - (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe [1811880] [PID.2748]
[MD5.65A17BCAF3CEE4C0A771F3B84CB24E30] - (.WIBU-SYSTEMS AG - WkSvMgr.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe [5724472] [PID.2788]
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [PID.2804]
[MD5.CD441BF2F5CFD46B5105891DDFFDFBA2] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1328424] [PID.2912]
[MD5.017335C7AEFA8ED76750DB95A78D6BFA] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [185640] [PID.2920]
[MD5.F0E2D55BB5C7E106E92DF972C1B277A6] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200] [PID.2928]
[MD5.690A6DF02625A46ABEE250C6151B7FBA] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54576] [PID.2936]
[MD5.48BE298F7FD1BEF4D8FBACB04D8D95C4] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576] [PID.2992]
[MD5.0DCAC41EB58A45049BD7FF665C32D5F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.3036]
[MD5.288D8A54FE326AE26AD43F348E646147] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440] [PID.3048]
[MD5.AD8BD96B41C40AC36D803DF267B26EF0] - (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2254768] [PID.3068]
[MD5.48E6868781B4E8BF4B77DBEC7694BCE8] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295072] [PID.304]
[MD5.A3A82800FF19B26B94D2327A2F11067E] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe [821144] [PID.1184]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.2148]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.1116]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4416]
[MD5.34C855FF55E59C36647EC9E8748DC3C3] - (.Pas de propri�taire - PVP.net Patcher Kernel.) -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe [1300376] [PID.3960]
[MD5.4458989C34FA84B5A75DD3ABCFBE786A] - (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624] [PID.4304]
[MD5.2BD54868285B7E988AEB365A82F07660] - (.Pas de propri�taire - PVP.net Patcher.) -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.177\deploy\LoLLauncher.exe [2693008] [PID.184]
[MD5.5B93A9C1BB894EFA4D6429EEADA5007C] - (...) -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.38\deploy\LolClient.exe [74752] [PID.3280]
[MD5.050D1C454A49D4DF8EB5222D352B6630] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917400] [PID.2448]
[MD5.57785A015DED82C287761CA1BD02D532] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.5600]
[MD5.D8425B8D6DC2AA8D871363B0775BCF18] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe [1861512] [PID.5840]
[MD5.5DFE72B9F1FF669070FC032090B7B982] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507312] [PID.5536]
[MD5.0B8FAC5A31E7ED0EA42F8BC46EC80F0F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6747136] [PID.5496]
[MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.500]
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.2532]
[MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.2712]
[MD5.4DB93F4DB7077801D2D82013506AC1D0] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312] [PID.2660]
[MD5.48939D9F350AEF9370F03A1E49A49BE2] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136] [PID.2776]
[MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.2492]
[MD5.88D586E3D6EE17D5C7B8540F72F49148] - (...) -- C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe [149872] [PID.3252]
[MD5.173F13CDEBF8E067629462E9D6E481CB] - (...) -- C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick-connector.exe [769392] [PID.3304]
[MD5.DFEFF67508D3A9AEB1A85D7B0F513B24] - (.Hewlett-Packard Company - LightScribe Service.) -- c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.3364]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.3644]
[MD5.27F1BE4A53441C9F1F48B9ADC145B0A5] - (...) -- C:\Windows\SysWOW64\PnkBstrB.exe [189248] [PID.3656]
[MD5.A0FF419B61AE47E26ADF3BB15DB4F2FE] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608] [PID.3704]
[MD5.EC25ED59540DB3D4797795335409FD64] - (.WIBU-SYSTEMS AG - WibuKey Network server management.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe [587264] [PID.3992]
~ Processes Running: Scanned in 00mn 02s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\D\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\D\AppData\Roaming\Mozilla\Firefox\Profiles\q3qikadi.default\prefs.js
M3 - MFPP: Plugins - [D] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\mystarttb.xml
M2 - MFEP: prefs.js [D - q3qikadi.default\AstroToolbar@toolbarnet.com] [] Astroburn Toolbar v (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\en-GB@dictionaries.addons.mozilla.org] [] British English Dictionary v1.19.1 (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\firefox@tvunetworks.com] [] TVU Web Player v2,5,3,1 (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\{607b689f-7600-45e4-b8e5-887f72dab15c}] [] MyStart Toolbar v3.6 (..)
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
~ Firefox Browser: 25 Legitimates Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
~ IE Browser: 14 Legitimates Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: 0.0.0.0 localhost
O1 - Hosts: 0.0.0.0 localhost
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 120
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Astroburn Toolbar [64Bits] - [HKLM]{EFEED92A-A33D-4873-BA8F-32BAA631E54D} . (...) -- C:\Program Files (x86)\Astroburn Toolbar\ABToolbar64.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Run: [HP Remote Software] . (.Pas de propri�taire - Core functionality module for HP Remote sof.) -- C:\Program Files\Hewlett-Packard\HP Remote\HP REMOTE V1.0.5.exe
O4 - HKLM\..\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKLM\..\Run: [iSlim310_Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\iSlim310\Monitor.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKCU\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKCU\..\Run: [Megakey] C:\Users\D\AppData\Local\Megamedia\Megakey\Megakey.exe (.not file.)
O4 - HKCU\..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\D\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\D\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKLM\..\Wow6432Node\Run: [hpsysdrv] . (.Hewlett-Packard - hpsysdrv.) -- c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePDIRShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [TSMAgent] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [CLMLServer for HP TouchSmart] . (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
O4 - HKLM\..\Wow6432Node\Run: [DVDAgent] . (.CyberLink Corp. - HP DVDSmart Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5.5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5.5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Acrobat Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Megakey] C:\Users\D\AppData\Local\Megamedia\Megakey\Megakey.exe (.not file.)
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\D\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\D\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: CyberLink DVD Suite Deluxe.lnk . (.CyberLink - PowerStarter.) -- C:\Program Files (x86)\Cyberlink\CyberLink DVD Suite Deluxe\PowerStarter.exe
O4 - GS\QuickLaunch: HP MediaSmart.lnk . (...) -- c:\Windows\Installer\{D2E8F543-D23A-4A38-AFFC-4BDEBFBA6FDA}\_BD15A4BF3888028F418EC7.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\D\AppData\Roaming\Spotify\spotify.exe
O4 - GS\Programs: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\QuickLaunch: Adobe Master Collection CS5.5 - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5
O4 - GS\QuickLaunch: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) -- C:\Windows\twain_32\escndv\escndv.exe
O4 - GS\QuickLaunch: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\SendTo: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) -- C:\Program Files (x86)\WinSCP\WinSCP.exe
O4 - GS\Desktop: EMPIRES2 - Raccourci.lnk . (.Microsoft Corporation - Age of Empires II.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires II\EMPIRES2.exe
~ Global Startup: Scanned in 00mn 01s
---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s
---\\ Cl� de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioth�que de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: JumpStart Push-Button Service (jswpbapi) . (.Atheros Communications, Inc. - JumpStart PushButton Service.) - C:\Program Files (x86)\Jumpstart\jswpbapi.exe
O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) . (...) - C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe (.not file.)
O23 - Service: Norton Internet Security (Norton Internet Security) . (...) - C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (.not file.)
O23 - Service: (vToolbarUpdater15.5.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe (.not file.) =>Toolbar.AVGSearch
O23 - Service: WireHelpSvc (WireHelpSvc) . (...) - C:\Program Files\Common Files\WireHelpSvc.exe
O23 - Service: WibuKey Server (WkSvw32.exe) . (.WIBU-SYSTEMS AG - WibuKey Network server management.) - C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe
~ Services: 21 Legitimates Scanned in 00mn 05s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s
---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
[MD5.C1028CBDF27FCF0AA6D39DF121D0B134] [APT] [RecoveryCD] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe [25656]
[MD5.00000000000000000000000000000000] [APT] [{32801858-8D0C-413B-A798-00EC7AD66FAC}] (...) -- C:\Users\D\DownloaDs\epson324678eu.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{FFAE49A8-0173-40FF-B21D-F05D473C6FA7}] (...) -- E:\DirectX9c\DXSETUP.exe (.not file.) [0]
~ Scheduled Task: 31 Legitimates Scanned in 00mn 03s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
~ Active Setup: 11 Legitimates Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: (SRTSP) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSP64.sys (.not file.)
O41 - Driver: (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.sys (.not file.)
~ Drivers: 81 Legitimates Scanned in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: BrowseToSave - (...) [HKLM][64Bits] -- {860A009E-B68B-4F95-AD7E-FEA95DE92268}
O42 - Logiciel: Coupish - (...) [HKLM][64Bits] -- Coupish
O42 - Logiciel: DWGSee Pro 2013 - (.AutoDWG.) [HKLM][64Bits] -- {70EB46F3-F900-411A-A10C-A9F612D49430}
O42 - Logiciel: ESL Wire 1.11.1 - (.Turtle Entertainment GmbH.) [HKLM][64Bits] -- ESL Wire_is1
O42 - Logiciel: FBX Plugin 2006.08 for Max 9.0 - (...) [HKLM][64Bits] -- FBX Plugin 2006.08 for Max 9.0
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: iSlim 310 - (.KYE.) [HKLM][64Bits] -- {BD4B921E-5A26-4AD2-AD04-C1591443573A}
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
~ Logic: 220 Legitimates Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Alias]
[HKCU\Software\AppDataLow\Software\antiphishing-mystart3_6dn]
[HKCU\Software\AppDataLow\Software\mystarttb]
[HKCU\Software\BitTorrent]
[HKCU\Software\CarbonGames]
[HKCU\Software\Coupish]
[HKCU\Software\ESL Wire]
[HKCU\Software\Pando Networks]
[HKLM\Software\Automobile]
[HKLM\Software\Dog]
[HKLM\Software\Watch]
[HKLM\Software\Wow6432Node\Discreet]
[HKLM\Software\Wow6432Node\KYE]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Valve Lan]
[HKLM\Software\Wow6432Node\WinSte]
~ Key Software: 378 Legitimates Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01/09/2013 - 12:29:32 - [0,471] ----D C:\Program Files (x86)\BrowseToSave
O43 - CFD: 13/07/2011 - 15:55:52 - [0,949] ----D C:\Program Files (x86)\Coupish
O43 - CFD: 19/05/2013 - 22:02:32 - [0] ----D C:\Program Files (x86)\dumps
O43 - CFD: 20/05/2011 - 22:21:50 - [10,281] ----D C:\Program Files (x86)\islim 310
O43 - CFD: 17/07/2011 - 13:11:39 - [4,714] ----D C:\Program Files (x86)\mystarttb
O43 - CFD: 19/05/2011 - 20:11:45 - [7,186] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 07/05/2013 - 08:01:56 - [0,765] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 21/01/2012 - 15:12:48 - [0,000] ----D C:\ProgramData\ESL Wire
O43 - CFD: 16/12/2012 - 12:29:35 - [0] ----D C:\Users\D\AppData\Roaming\Carbon
O43 - CFD: 30/07/2011 - 15:41:00 - [0,204] ----D C:\Users\D\AppData\Roaming\Sites
O43 - CFD: 18/05/2013 - 17:15:39 - [9,323] ----D C:\Users\D\AppData\Roaming\uTorrent
O43 - CFD: 17/07/2011 - 13:11:44 - [155,006] ----D C:\Users\D\AppData\Local\antiphishing-mystart3_6dn
O43 - CFD: 23/01/2012 - 18:31:11 - [0,907] ----D C:\Users\D\AppData\Local\ESL Wire Game Client
O43 - CFD: 25/12/2012 - 15:24:13 - [0,303] ----D C:\Users\D\AppData\Local\GS-LW-Temp
O43 - CFD: 28/03/2013 - 21:27:04 - [0] --HAD C:\Users\D\AppData\Local\noNYHC1PQiJt
O43 - CFD: 06/09/2011 - 21:58:26 - [0] ----D C:\Users\D\AppData\Local\uTorrent
~ Program Folder: 283 Legitimates Scanned in 00mn 05s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.F4B799F48C44D727E3B5F1944878D502] - 01/09/2013 - 12:18:31 ---A- . (...) -- C:\log2.txt [115]
O44 - LFC:[MD5.2D8BF125A8C7C7F9C539D72C0D32597C] - 29/08/2013 - 17:41:08 ---A- . (...) -- C:\UsbFix [Clean 4] PC-DE-D.txt [23134]
O44 - LFC:[MD5.5BC3E10273210D934FA68E1E8B042264] - 28/08/2013 - 12:45:31 ----- . (...) -- C:\UsbFix [Scan 5] PC-DE-D.txt [16787]
O44 - LFC:[MD5.754F1C0FC39AA5AE6F8B2AA82501DE34] - 25/08/2013 - 15:18:35 ----- . (...) -- C:\UsbFix [Clean 3] PC-DE-D.txt [47912]
O44 - LFC:[MD5.CD4947A4CFD9205D010B91F0DD29D1E2] - 25/08/2013 - 15:13:08 ----- . (...) -- C:\UsbFix [Scan 4] PC-DE-D.txt [16200]
O44 - LFC:[MD5.4B281E2720C53B8C30A33D59AD8DF75E] - 16/08/2013 - 23:01:53 ---A- . (.TMRG, Inc. - Relevant-Knowledge.) -- C:\Windows\SysNative\rlls64.dll [859416]
O44 - LFC:[MD5.4B281E2720C53B8C30A33D59AD8DF75E] - 16/08/2013 - 23:01:53 RSHAD . (.TMRG, Inc. - Relevant-Knowledge.) -- C:\Windows\System32\rlls64.dll [859416]
O44 - LFC:[MD5.731D3D7F2414CAD3BE52AAC5067E532A] - 07/08/2013 - 22:32:03 ----- . (...) -- C:\UsbFix [Clean 2] PC-DE-D.txt [47383]
O44 - LFC:[MD5.C4DFED004EACA831DA7975D2E8E1484D] - 07/08/2013 - 22:30:05 ----- . (...) -- C:\UsbFix [Scan 3] PC-DE-D.txt [16035]
O44 - LFC:[MD5.FFB012AD70C6A298D340BD37408D4A07] - 05/08/2013 - 15:10:57 ----- . (...) -- C:\UsbFix [Clean 1] PC-DE-D.txt [23595]
O44 - LFC:[MD5.7124A435EDC9B24B4D87ADAA5C7CB838] - 05/08/2013 - 15:00:23 ----- . (...) -- C:\UsbFix [Scan 2] PC-DE-D.txt [17585]
~ Files: 93 Legitimates Scanned in 00mn 03s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.85202C3F39836645CB7CD1CF25112EBD] - 01/09/2013 - 08:44:57 ---A- - C:\Windows\Prefetch\RICHVI~1.EXE-4ABD8B87.pf
O45 - LFCP:[MD5.E47172ACFCB3F2D6855CE2BB963E04F8] - 01/09/2013 - 08:49:29 ---A- - C:\Windows\Prefetch\RLVKNLG32.EXE-00E8EBC2.pf
O45 - LFCP:[MD5.DC27AA577AA2FD2CEDC909F5400AABC8] - 01/09/2013 - 08:49:29 ---A- - C:\Windows\Prefetch\RLVKNLG64.EXE-57EBB483.pf
O45 - LFCP:[MD5.3CF1C075D027D57EFE866326EB7A4208] - 01/09/2013 - 08:50:29 ---A- - C:\Windows\Prefetch\RLVKNLG.EXE-FF9A95B1.pf
O45 - LFCP:[MD5.88524C6754D660ED02EF91655F9658F2] - 01/09/2013 - 09:59:49 ---A- - C:\Windows\Prefetch\SC2SWITCHER.EXE-72371F9A.pf
O45 - LFCP:[MD5.DB4A24941408DD08B4406BA255481256] - 01/09/2013 - 09:59:51 ---A- - C:\Windows\Prefetch\SC2.EXE-2B6AD48D.pf
O45 - LFCP:[MD5.6130962E8D40C760D63AA3A63958444F] - 01/09/2013 - 11:34:37 ---A- - C:\Windows\Prefetch\HP REMOTE V1.0.5.EXE-D4BF8685.pf
O45 - LFCP:[MD5.F1BBC33115FC118DA5D251F857C594C1] - 01/09/2013 - 11:35:06 ---A- - C:\Windows\Prefetch\INPUTPERSONALIZATION.EXE-EE55283A.pf
O45 - LFCP:[MD5.63390613D2E562770DE6CF5A483ADEC5] - 01/09/2013 - 11:53:35 ---A- - C:\Windows\Prefetch\MADHCCTRL.EXE-E5B4FF7C.pf
O45 - LFCP:[MD5.434F2D29F47584388C58D94A460105B4] - 01/09/2013 - 12:21:42 ---A- - C:\Windows\Prefetch\PMB.EXE-C5A7F854.pf
O45 - LFCP:[MD5.63FEE0719AEAF67F2F5B7960E911D6DD] - 28/08/2013 - 12:56:40 ---A- - C:\Windows\Prefetch\AVGNSA.EXE-2C2436FA.pf
O45 - LFCP:[MD5.247DDBFCA1EFD64838587B25FFCECFC6] - 28/08/2013 - 12:56:40 ---A- - C:\Windows\Prefetch\AVGRSA.EXE-0F92781B.pf
O45 - LFCP:[MD5.37170E000656073ECBF1B94C8017B428] - 29/08/2013 - 11:43:02 ---A- - C:\Windows\Prefetch\UPDATERSTARTUPUTILITY.EXE-5802AED6.pf
O45 - LFCP:[MD5.64E6348FCF876D02018C8952C6B92BD2] - 29/08/2013 - 12:20:53 ---A- - C:\Windows\Prefetch\29.0.1547.62_28.0.1500.95_CHR-B6BD998D.pf
O45 - LFCP:[MD5.C38B8E7BC03B876E1D8AC01FD22631DB] - 29/08/2013 - 17:35:08 ---A- - C:\Windows\Prefetch\GO.EXE-759C3391.pf
O45 - LFCP:[MD5.0F6C955E32DE7D3F0EE400A42809EC53] - 29/08/2013 - 17:41:01 ---A- - C:\Windows\Prefetch\GREP.COM-6800C3CB.pf
O45 - LFCP:[MD5.FD5C2AFA5178C004BC5AEFF0F31B687C] - 29/08/2013 - 18:13:39 ---A- - C:\Windows\Prefetch\MIRC.EXE-AB639CDA.pf
O45 - LFCP:[MD5.85E62825E37E2C5909985E3981F8EB21] - 29/08/2013 - 18:17:22 ---A- - C:\Windows\Prefetch\SETUP(1).EXE-7503203A.pf
O45 - LFCP:[MD5.4C2468A85FB7A779078911AFE430F7DB] - 30/08/2013 - 14:21:34 ---A- - C:\Windows\Prefetch\HL.EXE-916C0F09.pf
O45 - LFCP:[MD5.A2EC622434C3F079FAA80B99D19360DF] - 30/08/2013 - 14:46:37 ---A- - C:\Windows\Prefetch\WORDCONV.EXE-95C4E1CF.pf
~ Prefetcher: 137 Legitimates Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
~ LSA: 7 Legitimates Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
~ CBS: 13 Legitimates Scanned in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{0f6d2ea1-0ef0-11e3-93e2-00ff01000001}\AutoRun\command. (.Froyo - Android USB Driver Setup.) -- G:\autorun.exe
~ Keys: Scanned in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 4 Legitimates Scanned in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 18 Legitimates Scanned in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 8 Legitimates Scanned in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [486456]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 01/09/2013 - 00:17:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831231657-l.list [2311]
O61 - LFC: 01/09/2013 - 00:17:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831231657-m.list [57143]
O61 - LFC: 01/09/2013 - 00:48:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831234829-m.list [5687]
O61 - LFC: 01/09/2013 - 01:20:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901001959-l.list [2957]
O61 - LFC: 01/09/2013 - 01:20:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901001959-m.list [16260]
O61 - LFC: 01/09/2013 - 01:51:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901005132-m.list [2050]
O61 - LFC: 01/09/2013 - 02:23:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901012248-l.list [3782]
O61 - LFC: 01/09/2013 - 02:23:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901012248-m.list [9496]
O61 - LFC: 01/09/2013 - 02:54:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901015426-m.list [4700]
O61 - LFC: 01/09/2013 - 03:25:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901022541-l.list [2208]
O61 - LFC: 01/09/2013 - 03:25:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901022541-m.list [16988]
O61 - LFC: 01/09/2013 - 03:57:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901025707-m.list [12284]
O61 - LFC: 01/09/2013 - 04:28:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901032823-l.list [3530]
O61 - LFC: 01/09/2013 - 04:28:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901032823-m.list [26355]
O61 - LFC: 01/09/2013 - 05:00:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901035950-m.list [1322]
O61 - LFC: 01/09/2013 - 05:31:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901043108-l.list [3310]
O61 - LFC: 01/09/2013 - 05:31:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901043108-m.list [11152]
O61 - LFC: 01/09/2013 - 06:02:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901050231-l.list [2414]
O61 - LFC: 01/09/2013 - 06:02:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901050231-m.list [1999]
O61 - LFC: 01/09/2013 - 06:34:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901053344-l.list [53]
O61 - LFC: 01/09/2013 - 06:34:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901053344-m.list [3728]
O61 - LFC: 01/09/2013 - 07:05:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901060501-l.list [2830]
O61 - LFC: 01/09/2013 - 07:05:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901060501-m.list [161]
O61 - LFC: 01/09/2013 - 07:37:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901063714-l.list [1698712]
O61 - LFC: 01/09/2013 - 07:37:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901063714-m.list [10970]
O61 - LFC: 01/09/2013 - 08:08:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901070827-l.list [1229]
O61 - LFC: 01/09/2013 - 08:08:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901070827-m.list [11440]
O61 - LFC: 01/09/2013 - 08:39:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901073929-m.list [121439]
O61 - LFC: 01/09/2013 - 08:50:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831234829-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901005132-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901015426-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901025707-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901035950-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901073929-l.list [0]
O61 - LFC: 01/09/2013 - 09:10:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901081039-l.list [3161]
O61 - LFC: 01/09/2013 - 09:10:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901081039-m.list [300055]
O61 - LFC: 01/09/2013 - 09:42:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901084149-l.list [219]
O61 - LFC: 01/09/2013 - 09:42:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901084149-m.list [345831]
O61 - LFC: 01/09/2013 - 10:13:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901091302-l.list [5031]
O61 - LFC: 01/09/2013 - 10:13:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901091302-m.list [71334]
O61 - LFC: 01/09/2013 - 10:44:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901094412-m.list [6896]
O61 - LFC: 01/09/2013 - 10:46:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901094412-l.list [0]
O61 - LFC: 01/09/2013 - 11:15:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901101524-l.list [4110]
O61 - LFC: 01/09/2013 - 11:15:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901101524-m.list [16464]
O61 - LFC: 01/09/2013 - 11:18:41 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [268176]
O61 - LFC: 01/09/2013 - 11:19:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\catalog.list [28093]
O61 - LFC: 01/09/2013 - 11:19:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\temp.zip [4602]
O61 - LFC: 01/09/2013 - 11:50:17 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\Local State [41941]
O61 - LFC: 01/09/2013 - 11:50:18 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5]
O61 - LFC: 01/09/2013 - 11:53:34 ---A- C:\Users\D\AppData\Roaming\Media Player Classic\default.mpcpl [77]
O61 - LFC: 01/09/2013 - 12:21:32 ---A- C:\Users\D\AppData\Local\PMB Files\cert\cert8.db [65536]
O61 - LFC: 01/09/2013 - 12:21:32 ---A- C:\Users\D\AppData\Local\PMB Files\cert\secmod.db [16384]
O61 - LFC: 01/09/2013 - 12:21:33 ---A- C:\Users\D\AppData\Local\PMB Files\cert\key3.db [16384]
O61 - LFC: 01/09/2013 - 12:32:25 ---A- C:\Users\D\AppData\Local\PMB Files\pando.save [923]
O61 - LFC: 29/08/2013 - 00:06:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828230629-l.list [4638]
O61 - LFC: 29/08/2013 - 00:06:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828230629-m.list [37779]
O61 - LFC: 29/08/2013 - 00:38:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828233755-m.list [11810]
O61 - LFC: 29/08/2013 - 01:09:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829000913-l.list [3491]
O61 - LFC: 29/08/2013 - 01:09:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829000913-m.list [1556]
O61 - LFC: 29/08/2013 - 01:40:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829004039-m.list [14722]
O61 - LFC: 29/08/2013 - 02:12:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829011205-l.list [2820]
O61 - LFC: 29/08/2013 - 02:12:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829011205-m.list [1068]
O61 - LFC: 29/08/2013 - 02:43:51 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829014333-m.list [40967]
O61 - LFC: 29/08/2013 - 03:15:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829021500-l.list [4339]
O61 - LFC: 29/08/2013 - 03:15:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829021500-m.list [12053]
O61 - LFC: 29/08/2013 - 03:46:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829024630-m.list [22005]
O61 - LFC: 29/08/2013 - 04:18:07 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829031749-l.list [3430]
O61 - LFC: 29/08/2013 - 04:18:07 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829031749-m.list [7943]
O61 - LFC: 29/08/2013 - 04:49:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829034929-m.list [9441]
O61 - LFC: 29/08/2013 - 05:21:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829042054-l.list [3261]
O61 - LFC: 29/08/2013 - 05:21:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829042054-m.list [5547]
O61 - LFC: 29/08/2013 - 05:52:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829045226-m.list [16812]
O61 - LFC: 29/08/2013 - 06:24:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829052344-l.list [2735]
O61 - LFC: 29/08/2013 - 06:24:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829052344-m.list [24492]
O61 - LFC: 29/08/2013 - 06:55:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829055515-m.list [27272]
O61 - LFC: 29/08/2013 - 07:28:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829062759-l.list [1412076]
O61 - LFC: 29/08/2013 - 07:28:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829062759-m.list [55618]
O61 - LFC: 29/08/2013 - 07:59:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829065934-m.list [42211]
O61 - LFC: 29/08/2013 - 08:31:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829073054-l.list [2898]
O61 - LFC: 29/08/2013 - 08:31:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829073054-m.list [57335]
O61 - LFC: 29/08/2013 - 09:02:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829080229-m.list [173129]
O61 - LFC: 29/08/2013 - 09:34:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829083352-l.list [2919]
O61 - LFC: 29/08/2013 - 09:34:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829083352-m.list [302042]
O61 - LFC: 29/08/2013 - 10:05:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829090521-l.list [3745]
O61 - LFC: 29/08/2013 - 10:05:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829090521-m.list [106713]
O61 - LFC: 29/08/2013 - 10:37:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829093643-m.list [20754]
O61 - LFC: 29/08/2013 - 11:08:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829100806-l.list [3894]
O61 - LFC: 29/08/2013 - 11:08:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829100806-m.list [9286]
O61 - LFC: 29/08/2013 - 11:37:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828233755-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829004039-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:19 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829014333-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829024630-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829034929-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829045226-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829055515-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829065934-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829080229-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829093643-l.list [0]
O61 - LFC: 29/08/2013 - 11:39:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829103925-m.list [4635]
O61 - LFC: 29/08/2013 - 11:45:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829103925-l.list [0]
O61 - LFC: 29/08/2013 - 12:11:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829111043-l.list [3419]
O61 - LFC: 29/08/2013 - 12:11:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829111043-m.list [15903]
O61 - LFC: 29/08/2013 - 12:42:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829114155-m.list [4815]
O61 - LFC: 29/08/2013 - 12:46:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829114155-l.list [0]
O61 - LFC: 29/08/2013 - 13:13:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829121309-l.list [4075]
O61 - LFC: 29/08/2013 - 13:13:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829121309-m.list [14081]
O61 - LFC: 29/08/2013 - 13:44:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829124422-m.list [10021]
O61 - LFC: 29/08/2013 - 13:46:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829124422-l.list [0]
O61 - LFC: 29/08/2013 - 14:15:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829131537-l.list [2725]
O61 - LFC: 29/08/2013 - 14:15:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829131537-m.list [3417]
O61 - LFC: 29/08/2013 - 14:47:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829134651-m.list [27200]
O61 - LFC: 29/08/2013 - 14:51:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829134651-l.list [0]
O61 - LFC: 29/08/2013 - 15:18:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829141805-l.list [2416]
O61 - LFC: 29/08/2013 - 15:18:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829141805-m.list [29955]
O61 - LFC: 29/08/2013 - 15:49:36 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829144919-m.list [15719]
O61 - LFC: 29/08/2013 - 15:51:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829144919-l.list [0]
O61 - LFC: 29/08/2013 - 16:20:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829152025-l.list [2895]
O61 - LFC: 29/08/2013 - 16:20:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829152025-m.list [10607]
O61 - LFC: 29/08/2013 - 16:51:56 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829155139-m.list [3672]
O61 - LFC: 29/08/2013 - 16:52:19 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829155139-l.list [0]
O61 - LFC: 29/08/2013 - 17:23:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829162256-l.list [2547]
O61 - LFC: 29/08/2013 - 17:23:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829162256-m.list [6738]
O61 - LFC: 29/08/2013 - 17:54:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829165408-m.list [16137]
O61 - LFC: 29/08/2013 - 18:17:10 ---A- C:\Users\D\Downloads\setup(1).exe [2326976]
O61 - LFC: 29/08/2013 - 18:25:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829172521-l.list [3610]
O61 - LFC: 29/08/2013 - 18:25:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829172521-m.list [4708]
O61 - LFC: 29/08/2013 - 18:56:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829175634-m.list [14639]
O61 - LFC: 29/08/2013 - 19:28:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829182751-m.list [5182]
O61 - LFC: 29/08/2013 - 19:59:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829185909-m.list [10730]
O61 - LFC: 29/08/2013 - 20:30:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829193026-l.list [3518]
O61 - LFC: 29/08/2013 - 20:30:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829193026-m.list [9640]
O61 - LFC: 29/08/2013 - 21:01:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829200142-l.list [127]
O61 - LFC: 29/08/2013 - 21:01:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829200142-m.list [13433]
O61 - LFC: 29/08/2013 - 21:33:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829203308-l.list [2883]
O61 - LFC: 29/08/2013 - 21:33:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829203308-m.list [28481]
O61 - LFC: 29/08/2013 - 22:04:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829210423-l.list [2004]
O61 - LFC: 29/08/2013 - 22:04:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829210423-m.list [11183]
O61 - LFC: 29/08/2013 - 22:36:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829213551-m.list [3797]
O61 - LFC: 29/08/2013 - 23:07:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829220707-l.list [3128]
O61 - LFC: 29/08/2013 - 23:07:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829220707-m.list [26327]
O61 - LFC: 29/08/2013 - 23:38:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829223835-m.list [45978]
O61 - LFC: 30/08/2013 - 00:10:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829230950-l.list [2773]
O61 - LFC: 30/08/2013 - 00:10:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829230950-m.list [5340]
O61 - LFC: 30/08/2013 - 01:12:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830001222-l.list [2297]
O61 - LFC: 30/08/2013 - 01:12:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830001222-m.list [9277]
O61 - LFC: 30/08/2013 - 01:44:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830004352-m.list [61677]
O61 - LFC: 30/08/2013 - 02:15:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830011507-l.list [3209]
O61 - LFC: 30/08/2013 - 02:15:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830011507-m.list [11071]
O61 - LFC: 30/08/2013 - 02:46:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830014634-m.list [12512]
O61 - LFC: 30/08/2013 - 03:18:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830021751-l.list [2114]
O61 - LFC: 30/08/2013 - 03:18:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830021751-m.list [19362]
O61 - LFC: 30/08/2013 - 03:49:36 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830024918-m.list [10285]
O61 - LFC: 30/08/2013 - 04:21:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830032047-l.list [1323]
O61 - LFC: 30/08/2013 - 04:21:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830032047-m.list [101846]
O61 - LFC: 30/08/2013 - 04:52:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830035229-m.list [61403]
O61 - LFC: 30/08/2013 - 05:24:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830042357-l.list [1254]
O61 - LFC: 30/08/2013 - 05:24:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830042357-m.list [57737]
O61 - LFC: 30/08/2013 - 05:55:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830045539-m.list [5960]
O61 - LFC: 30/08/2013 - 06:27:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830052708-l.list [2103]
O61 - LFC: 30/08/2013 - 06:27:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830052708-m.list [23734]
O61 - LFC: 30/08/2013 - 07:00:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830055958-l.list [1711967]
O61 - LFC: 30/08/2013 - 07:00:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830055958-m.list [24170]
O61 - LFC: 30/08/2013 - 07:31:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830063120-l.list [1514]
O61 - LFC: 30/08/2013 - 07:31:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830063120-m.list [17213]
O61 - LFC: 30/08/2013 - 08:03:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830070244-l.list [54]
O61 - LFC: 30/08/2013 - 08:03:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830070244-m.list [15608]
O61 - LFC: 30/08/2013 - 08:34:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830073405-l.list [2537]
O61 - LFC: 30/08/2013 - 08:34:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830073405-m.list [20885]
O61 - LFC: 30/08/2013 - 09:05:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830080540-l.list [1141]
O61 - LFC: 30/08/2013 - 09:05:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830080540-m.list [200471]
O61 - LFC: 30/08/2013 - 09:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830083706-l.list [328]
O61 - LFC: 30/08/2013 - 09:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830083706-m.list [235758]
O61 - LFC: 30/08/2013 - 10:08:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830090838-l.list [2191]
O61 - LFC: 30/08/2013 - 10:08:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830090838-m.list [15095]
O61 - LFC: 30/08/2013 - 10:26:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829165408-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829175634-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829182751-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:41 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829185909-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829213551-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829223835-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830004352-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830014634-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830024918-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830035229-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:50 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830045539-l.list [0]
O61 - LFC: 30/08/2013 - 10:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830093956-m.list [5684]
O61 - LFC: 30/08/2013 - 10:42:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830093956-l.list [0]
O61 - LFC: 30/08/2013 - 11:11:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830101112-l.list [2916]
O61 - LFC: 30/08/2013 - 11:11:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830101112-m.list [13908]
O61 - LFC: 30/08/2013 - 11:42:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830104231-m.list [4606]
O61 - LFC: 30/08/2013 - 11:43:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830104231-l.list [0]
O61 - LFC: 30/08/2013 - 12:14:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830111345-l.list [1633]
O61 - LFC: 30/08/2013 - 12:14:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830111345-m.list [6700]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_pnacl_json [379]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbeginS_o [2432]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o [2008]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o [2120]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtendS_o [1343]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o [1342]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe [2221512]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a [6416]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a [46812]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_eh_a [234888]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a [167354]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a [1710]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe [8944040]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\manifest.fingerprint [66]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\manifest.json [575]
O61 - LFC: 30/08/2013 - 12:45:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830114454-m.list [7824]
O61 - LFC: 30/08/2013 - 12:47:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830114454-l.list [0]
O61 - LFC: 30/08/2013 - 13:16:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830121608-l.list [3070]
O61 - LFC: 30/08/2013 - 13:16:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830121608-m.list [6677]
O61 - LFC: 30/08/2013 - 13:47:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830124718-m.list [10565]
O61 - LFC: 30/08/2013 - 13:51:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830124718-l.list [0]
O61 - LFC: 30/08/2013 - 14:18:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830131833-l.list [2059]
O61 - LFC: 30/08/2013 - 14:18:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830131833-m.list [1818]
O61 - LFC: 30/08/2013 - 14:50:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830134944-m.list [14169]
O61 - LFC: 30/08/2013 - 14:52:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830134944-l.list [0]
O61 - LFC: 30/08/2013 - 15:03:35 ---A- C:\Users\D\CV Thomas VINCE.doc [413696]
O61 - LFC: 30/08/2013 - 15:21:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830142047-l.list [1631]
O61 - LFC: 30/08/2013 - 15:21:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830142047-m.list [6091]
O61 - LFC: 30/08/2013 - 15:52:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830145159-m.list [22153]
O61 - LFC: 30/08/2013 - 16:23:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830152313-l.list [2617]
O61 - LFC: 30/08/2013 - 16:23:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830152313-m.list [7122]
O61 - LFC: 30/08/2013 - 16:35:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830145159-l.list [0]
O61 - LFC: 30/08/2013 - 16:54:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830155424-m.list [17445]
O61 - LFC: 30/08/2013 - 17:14:32 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830155424-l.list [0]
O61 - LFC: 30/08/2013 - 17:25:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830162538-l.list [2596]
O61 - LFC: 30/08/2013 - 17:25:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830162538-m.list [9617]
O61 - LFC: 30/08/2013 - 17:57:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830165648-m.list [19134]
O61 - LFC: 30/08/2013 - 18:28:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830172802-l.list [2173]
O61 - LFC: 30/08/2013 - 18:28:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830172802-m.list [19636]
O61 - LFC: 30/08/2013 - 18:45:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830165648-l.list [0]
O61 - LFC: 30/08/2013 - 18:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830175913-l.list [42]
O61 - LFC: 30/08/2013 - 18:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830175913-m.list [9038]
O61 - LFC: 30/08/2013 - 19:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830183026-l.list [3633]
O61 - LFC: 30/08/2013 - 19:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830183026-m.list [14526]
O61 - LFC: 30/08/2013 - 20:02:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830190144-m.list [5466]
O61 - LFC: 30/08/2013 - 20:33:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830193307-l.list [4115]
O61 - LFC: 30/08/2013 - 20:33:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830193307-m.list [21870]
O61 - LFC: 30/08/2013 - 21:04:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830200423-l.list [7764]
O61 - LFC: 30/08/2013 - 21:04:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830200423-m.list [10867]
O61 - LFC: 30/08/2013 - 21:11:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830190144-l.list [0]
O61 - LFC: 30/08/2013 - 21:36:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830203550-m.list [47863]
O61 - LFC: 30/08/2013 - 22:07:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830210704-l.list [5020]
O61 - LFC: 30/08/2013 - 22:07:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830210704-m.list [18321]
O61 - LFC: 30/08/2013 - 22:10:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830203550-l.list [0]
O61 - LFC: 30/08/2013 - 22:38:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830213839-m.list [15693]
O61 - LFC: 30/08/2013 - 23:10:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830220952-l.list [15976]
O61 - LFC: 30/08/2013 - 23:10:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830220952-m.list [4888]
O61 - LFC: 30/08/2013 - 23:41:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830224131-m.list [28154]
O61 - LFC: 31/08/2013 - 00:13:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830231254-l.list [15829]
O61 - LFC: 31/08/2013 - 00:13:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830231254-m.list [2893]
O61 - LFC: 31/08/2013 - 00:44:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830234423-m.list [19338]
O61 - LFC: 31/08/2013 - 01:16:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831001548-l.list [8900]
O61 - LFC: 31/08/2013 - 01:16:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831001548-m.list [12877]
O61 - LFC: 31/08/2013 - 01:47:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831004710-m.list [18418]
O61 - LFC: 31/08/2013 - 02:18:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831011828-l.list [7135]
O61 - LFC: 31/08/2013 - 02:18:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831011828-m.list [7752]
O61 - LFC: 31/08/2013 - 02:50:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831014954-m.list [26676]
O61 - LFC: 31/08/2013 - 03:21:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831022114-l.list [3266]
O61 - LFC: 31/08/2013 - 03:21:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831022114-m.list [16194]
O61 - LFC: 31/08/2013 - 03:53:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831025253-m.list [20163]
O61 - LFC: 31/08/2013 - 04:24:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831032416-l.list [3281]
O61 - LFC: 31/08/2013 - 04:24:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831032416-m.list [84112]
O61 - LFC: 31/08/2013 - 04:56:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831035548-m.list [92503]
O61 - LFC: 31/08/2013 - 05:27:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831042713-l.list [3473]
O61 - LFC: 31/08/2013 - 05:27:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831042713-m.list [7632]
O61 - LFC: 31/08/2013 - 05:59:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831045858-l.list [74]
O61 - LFC: 31/08/2013 - 05:59:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831045858-m.list [32974]
O61 - LFC: 31/08/2013 - 06:30:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831053013-l.list [3014]
O61 - LFC: 31/08/2013 - 06:30:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831053013-m.list [5085]
O61 - LFC: 31/08/2013 - 07:02:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831060154-m.list [14476]
O61 - LFC: 31/08/2013 - 07:35:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831063447-l.list [1140262]
O61 - LFC: 31/08/2013 - 07:35:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831063447-m.list [19757]
O61 - LFC: 31/08/2013 - 08:06:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831070613-l.list [3263]
O61 - LFC: 31/08/2013 - 08:06:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831070613-m.list [11778]
O61 - LFC: 31/08/2013 - 08:37:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831073729-m.list [14893]
O61 - LFC: 31/08/2013 - 09:09:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831080848-l.list [3253]
O61 - LFC: 31/08/2013 - 09:09:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831080848-m.list [252803]
O61 - LFC: 31/08/2013 - 09:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831083957-l.list [260]
O61 - LFC: 31/08/2013 - 09:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831083957-m.list [94425]
O61 - LFC: 31/08/2013 - 10:11:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831091123-l.list [3113]
O61 - LFC: 31/08/2013 - 10:11:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831091123-m.list [153288]
O61 - LFC: 31/08/2013 - 10:42:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831094242-m.list [121974]
O61 - LFC: 31/08/2013 - 10:47:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830213839-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830224131-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:56 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830234423-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831004710-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831014954-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831025253-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831035548-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831060154-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831073729-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831094242-l.list [0]
O61 - LFC: 31/08/2013 - 11:14:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831101403-l.list [3715]
O61 - LFC: 31/08/2013 - 11:14:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831101403-m.list [237628]
O61 - LFC: 31/08/2013 - 11:45:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831104514-m.list [69081]
O61 - LFC: 31/08/2013 - 12:16:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831111633-l.list [3302]
O61 - LFC: 31/08/2013 - 12:16:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831111633-m.list [112902]
O61 - LFC: 31/08/2013 - 12:48:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831114744-m.list [73713]
O61 - LFC: 31/08/2013 - 13:19:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831121859-l.list [3864]
O61 - LFC: 31/08/2013 - 13:19:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831121859-m.list [32081]
O61 - LFC: 31/08/2013 - 13:50:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831125011-m.list [7024]
O61 - LFC: 31/08/2013 - 13:59:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831104514-l.list [0]
O61 - LFC: 31/08/2013 - 13:59:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831114744-l.list [0]
O61 - LFC: 31/08/2013 - 13:59:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831125011-l.list [0]
O61 - LFC: 31/08/2013 - 14:06:10 ---A- C:\Users\D\Downloads\ZHPDiag2(1).exe [5074768]
O61 - LFC: 31/08/2013 - 14:21:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831132112-l.list [4378]
O61 - LFC: 31/08/2013 - 14:21:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831132112-m.list [4170]
O61 - LFC: 31/08/2013 - 14:52:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831135223-m.list [18168]
O61 - LFC: 31/08/2013 - 14:54:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831135223-l.list [0]
O61 - LFC: 31/08/2013 - 15:23:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831142333-l.list [1852]
O61 - LFC: 31/08/2013 - 15:23:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831142333-m.list [24615]
O61 - LFC: 31/08/2013 - 15:54:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831145444-m.list [10707]
O61 - LFC: 31/08/2013 - 16:56:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831155638-l.list [2197]
O61 - LFC: 31/08/2013 - 16:56:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831155638-m.list [46200]
O61 - LFC: 31/08/2013 - 17:28:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831162759-l.list [2317]
O61 - LFC: 31/08/2013 - 17:28:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831162759-m.list [9120]
O61 - LFC: 31/08/2013 - 17:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831165917-m.list [13655]
O61 - LFC: 31/08/2013 - 18:30:41 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831145444-l.list [0]
O61 - LFC: 31/08/2013 - 18:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831165917-l.list [0]
O61 - LFC: 31/08/2013 - 18:30:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831173033-l.list [2369]
O61 - LFC: 31/08/2013 - 18:30:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831173033-m.list [5018]
O61 - LFC: 31/08/2013 - 19:02:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831180151-l.list [69]
O61 - LFC: 31/08/2013 - 19:02:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831180151-m.list [8620]
O61 - LFC: 31/08/2013 - 19:33:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831183330-l.list [3358]
O61 - LFC: 31/08/2013 - 19:33:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831183330-m.list [63725]
O61 - LFC: 31/08/2013 - 20:05:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831190448-l.list [2655]
O61 - LFC: 31/08/2013 - 20:05:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831190448-m.list [3537]
O61 - LFC: 31/08/2013 - 20:36:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831193623-m.list [8279]
O61 - LFC: 31/08/2013 - 20:38:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831193623-l.list [0]
O61 - LFC: 31/08/2013 - 21:08:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831200746-l.list [2407]
O61 - LFC: 31/08/2013 - 21:08:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831200746-m.list [28991]
O61 - LFC: 31/08/2013 - 21:39:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831203929-m.list [42561]
O61 - LFC: 31/08/2013 - 21:43:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831203929-l.list [0]
O61 - LFC: 31/08/2013 - 22:11:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831211057-l.list [2570]
O61 - LFC: 31/08/2013 - 22:11:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831211057-m.list [7225]
O61 - LFC: 31/08/2013 - 22:42:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831214227-m.list [16894]
O61 - LFC: 31/08/2013 - 22:44:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831214227-l.list [0]
O61 - LFC: 31/08/2013 - 23:13:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831221344-l.list [2406]
O61 - LFC: 31/08/2013 - 23:13:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831221344-m.list [14855]
O61 - LFC: 31/08/2013 - 23:45:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831224528-l.list [209]
O61 - LFC: 31/08/2013 - 23:45:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831224528-m.list [1180]
~ 49 Fichiers temporaires (Temporary files)
~ Files: 846 Legitimates Scanned in 00mn 18s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.net.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 28/11/2011 - C:\Windows\system32\drivers\ESLWireACD.sys (ESLWireAC) .(. - EslWireACD.) - LEGACY_ESLWIREAC
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (SRTSP) .(...) - LEGACY_SRTSP
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (SRTSPX) .(...) - LEGACY_SRTSPX
~ Legacy: 84 Legitimates Scanned in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
~ FASS Keys: 21 Legitimates Scanned in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {37C5A1D9-DC2B-4C82-A911-64F4C83E0F96} - (Yahoo!) - http://fr.search.yahoo.com
~ Keys: Scanned in 00mn 00s
---\\ Crack & Keygen Files (O82)
F:\CAVE\Autodesk 3ds max 9 (3d Studio Max 9) FULL + Crack\3dsmax9Trial\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\Crack\3dsmax9-keygen.zip
F:\CAVE\Autodesk 3ds max 9 (3d Studio Max 9) FULL + Crack\3dsmax9Trial\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\Crack\max9keygen.exe
F:\CAVE\corbeille\YnK\PhotoShop\Adobe Photoshop CS5\Keygen\Patch Adobe Photoshop Extended CS5.exe
F:\CAVE\corbeille\YnK\AutoCAD 2009\AutoCAD.2009.Keygen.x64(64bit).+.x86(32bit).1919.rar
~ Files: Scanned in 02mn 02s
---\\ Recherche des services d�marr�s par Svchost (O83)
~ Services: 31 Legitimates Scanned in 00mn 00s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.262BB712BB373AA91888FBD36BC101A9] [SPRF][08/08/2012] (...) -- C:\ProgramData\nvModes.dat [56499]
[MD5.01145E4C20F362FCED9078B0B7DAEB6C] [SPRF][12/02/2013] (...) -- C:\Users\D\AppData\Local\d3d9caps.dat [680]
[MD5.D07444BDB22757545CD2FA91654F2FD0] [SPRF][24/08/2013] (...) -- C:\Users\D\AppData\Local\Temp\Quarantine.exe [328019]
[MD5.02A2128B3D3575C8050CA3EF3CC7E2A7] [SPRF][21/04/2013] (...) -- C:\Users\D\AppData\Roaming\wklnhst.dat [848]
[MD5.F7AF924D0D951FF8F7B05AD2E4FF50D3] [SPRF][01/09/2013] (...) -- C:\Users\D\Desktop\adwcleaner.exe [994642]
[MD5.A77C1DCDE677571807CEBFDC3357EA87] [SPRF][01/09/2013] (.Thisisu - Junkware Removal Tool.) -- C:\Users\D\Desktop\JRT.exe [1027511]
[MD5.E79F77AB73F46E9760C199C2DE8FCB5C] [SPRF][05/08/2013] (.El Desaparecido - SosVirus.net - UsbFix - Remove malware from yours drive!.) -- C:\Users\D\Desktop\usbfix.exe [1030081]
[MD5.3317698F2090DD811F0AA93190E13C82] [SPRF][05/03/2005] (.Microsoft Corporation - Microsoft GDI+.) -- C:\Windows\Downloaded Program Files\gdiplus.dll [1706800]
[MD5.55A78B0E5AE741DDE96E2D9345602F5F] [SPRF][05/03/2005] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropENU.dll [114848]
~ Files: Scanned in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{98272926-B5E0-4FB3-9423-0A23D23D1872}" | In - None - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "TCP Query User{2E78396A-9E35-46C9-8E99-95B7F0D7CC9F}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.)
O87 - FAEL: "UDP Query User{94973952-4977-49FE-979E-CFBF270729E5}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.)
O87 - FAEL: "TCP Query User{5E6CDFEF-48EC-46A6-9403-2CE8B1945AA6}C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{0403306C-1167-414C-9EFC-BFEEF9705ECE}C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe (.not file.)
O87 - FAEL: "TCP Query User{2E1753EC-5D96-43E1-9D9E-8E6B39185A9A}C:\program files (x86)\mirc\mirc.exe" | In - Private - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "UDP Query User{A1DB468A-BE58-48F4-8EA6-B9D0DD3E1A11}C:\program files (x86)\mirc\mirc.exe" | In - Private - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "TCP Query User{6A3544EA-8CA3-420E-96C0-E004AA326361}C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe (.not file.)
O87 - FAEL: "UDP Query User{0E2529BC-08E9-45DC-94E7-79B11BC82C75}C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe (.not file.)
O87 - FAEL: "TCP Query User{04DA2681-EFBC-4AE3-8FAC-8F21943D6E94}C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{C670AA7D-7B99-4CE5-9B35-F2D731438FEF}C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe (.not file.)
O87 - FAEL: "{78C6898F-1852-40B7-A8CC-006749527044}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{D3192925-2025-4070-8032-E36593085328}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{629A238F-634F-41F7-8458-3DFA4B4FB432}" | In - None - P17 - TRUE | .(.Turtle Entertainment GmbH - ESL Wire Gaming Client.) -- C:\Program Files\EslWire\wire.exe
O87 - FAEL: "{37939B3F-6453-4B1A-B8C8-4AF89CBC54EE}" | Out - None - P17 - TRUE | .(.Turtle Entertainment GmbH - ESL Wire Gaming Client.) -- C:\Program Files\EslWire\wire.exe
O87 - FAEL: "{9AD2A34C-FA7B-4BA6-9A27-E1E7825CB02F}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Datamngr
O87 - FAEL: "{8B9D9FE3-67AD-48C5-A580-6075CDD69FEA}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Datamngr
O87 - FAEL: "TCP Query User{3B9E7C94-DDDA-4F8F-9E57-B63B8DF73752}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{118E53A6-7C7B-4A05-9F90-C462B2869805}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "TCP Query User{09C7D4D9-C447-4BBE-B194-7ABBF50A0078}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{98463F92-4FD7-48A8-9AFE-7E958D5FD769}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "{8EFE2B77-C63D-454F-ABEA-FA3AE282D046}" | In - Domain - P6 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{72EFD6A1-945A-4C41-A704-D4A25E7F1A62}" | In - Domain - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{62B00723-4738-450E-8B37-56EFB3AE86C1}" | In - Private - P6 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{3353028A-33B7-4F4F-A7CE-921D520E3AE2}" | In - Private - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{D114F259-9600-4D51-B4E8-717444546EC9}" | In - None - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "TCP Query User{14F9EBEB-B00A-472B-8C31-25BEBC97202E}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "UDP Query User{BC90C3C2-C7F8-4604-B86B-1E9FB359BAAA}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "TCP Query User{23B94E98-7C62-4AED-998E-E22042B28719}C:\program files (x86)\mirc\mirc.exe" | In - Public - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "UDP Query User{CD09A114-312F-4A8B-B4D8-766BB9706ED8}C:\program files (x86)\mirc\mirc.exe" | In - Public - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "{9BE0ECB0-1AC4-46FA-A2A1-6F2FD4E5EFF4}" | In - Public - P6 - FALSE | .(.Graphisoft R&D - ArchiCAD 14.0.0 Component.) -- C:\Program Files (x86)\Graphisoft\ArchiCAD 14\ArchiCAD.exe
O87 - FAEL: "{9E5152BB-1409-40D8-90F0-9F6E37A1B3FC}" | In - Public - P17 - FALSE | .(.Graphisoft R&D - ArchiCAD 14.0.0 Component.) -- C:\Program Files (x86)\Graphisoft\ArchiCAD 14\ArchiCAD.exe
O87 - FAEL: "TCP Query User{7F6FD333-0C6E-4080-BDD8-CA3C680898BA}C:\program files (x86)\graphisoft\archicad 14\archicad.exe" | In - Private - P6 - TRUE | .(.Graphisoft R&D.) -- C:\program files (x86)\graphisoft\archicad 14\archicad.exe
O87 - FAEL: "UDP Query User{AECB15CD-41C1-4FE3-A4AC-0E81AFB2E5AE}C:\program files (x86)\graphisoft\archicad 14\archicad.exe" | In - Private - P17 - TRUE | .(.Graphisoft R&D.) -- C:\program files (x86)\graphisoft\archicad 14\archicad.exe
O87 - FAEL: "{E9801906-096C-4835-8F80-2CBE3D361C97}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os8018.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{2923160F-2FDC-4ABF-AD15-2807DCF81F11}" | In - Private - P6 - TRUE | .(.TMRG, Inc. - Relevant-Knowledge.) -- C:\Users\D\AppData\Local\Temp\~os1AF4.tmp\rlvknlg.exe
O87 - FAEL: "{F7C4012A-59B7-4CAF-AAE4-53F40D3BD15F}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os9E85.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{821BD87E-E1BE-4B2D-B0E9-BEDA8FEBD600}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os5EEF.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{10C9336F-5E93-4B2F-8CC5-4B1D993AA6E3}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os43C4.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{DE6604B7-DA7B-4784-835E-C25950CD6885}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "{E1A2775A-BA7F-466E-9C74-3B4D41C349AB}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "TCP Query User{03A580E0-4792-499F-A476-792BF4D12855}C:\program files (x86)\relevantknowledge\rlvknlg.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\relevantknowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "UDP Query User{87EE7EB1-94BD-4CD7-BD44-460B3A3CF993}C:\program files (x86)\relevantknowledge\rlvknlg.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\relevantknowledge\rlvknlg.exe (.not file.)
~ Firewall: 378 Legitimates Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : v2.11523 - (13/04/2013)
Cl�s trouv�es (Keys found) : 2
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 0
[HKCU\Software\BlabbersToolbar] =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
C:\Program Files (x86)\BrowseToSave =>Adware.Browse2Save
~ Additionnel: Scanned in 00mn 26s
---\\ Product Upgrade Codes (O90)
~ Update Products: 112 Legitimates Scanned in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 19/07/2011 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 24/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 24/10/2011 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 04/07/2013 4939312 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
SR - | Auto 23/07/2013 283136 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\Windows\System32\svchost.exe
SR - | Auto 27/08/2009 1253376 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 07/08/2008 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Demand 09/12/2008 242424 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 05/05/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 05/05/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2011 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 10/12/2012 2465712 | (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 04/12/2008 94208 | (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Auto 149872 | (InstallClick) . (...) - C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe
SR - | Demand 16/01/2012 934760 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 01/04/2009 265216 | (jswpbapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\Jumpstart\jswpbapi.exe
SS - | Demand 01/04/2009 954368 | (jswpsapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\Jumpstart\jswpsapi.exe
SR - | Auto 17/03/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - | Auto 0 | (mi-raysat_3dsmax9_32) . (...) - C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
SS - | Demand 01/09/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 0 | (Norton Internet Security) . (...) - C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
SR - | Auto 18/01/2013 884512 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 03/12/2012 1259880 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 0 | (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SR - | Auto 38608 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 16/03/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SS - | Auto 0 | (vToolbarUpdater15.5.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SS - | Auto 21/01/2008 27648 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 168864 | (WireHelpSvc) . (...) - C:\Program Files\Common Files\WireHelpSvc.exe
SR - | Auto 03/12/2009 587264 | (WkSvw32.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe
SS - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 01s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by D at 01/09/2013 13:35:49
device: opened successfully
user: error reading MBR
Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
~ MBR: 9 Legitimates Scanned in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by D at 01/09/2013 13:35:51
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s
~ 2603 Legitimates filtered by white list
End of the scan (1064 lines in 03mn 34s)(4)
Run by D at 01/09/2013 13:32:16
State : Nouvelle version disponible
High Elevated Privileges : OK
UAC : Deactivate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v29.0.1547.62 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows Vista Home Premium Edition, 64-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
Windows Automatic Updates : OK
---\\ System Protection
AVG 2013 v13.0.3222
Malwarebytes Anti-Malware version 1.75.0.1300
---\\ System Optimizer
CCleaner v3.17
---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 17
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4093 MB (41% free)
System Restore: Activ� (Enable)
System drive C: has 233 GB (51%) free of 451 GB
---\\ Logged in mode
~ Computer Name: PC-DE-D
~ User Name: D
~ All Users Names: UpdatusUser, D, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\D\AppData\Roaming\
~ %Desktop% : C:\Users\D\Desktop\
~ %Favorites% : C:\Users\D\Favorites\
~ %LocalAppData% : C:\Users\D\AppData\Local\
~ %StartMenu% : C:\Users\D\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 233 Go of 451 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 14 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 335 Go of 466 Go)
G:\ CD-ROM drive (Free 0 Go of 0 Go)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 08:10:17.) -- C:\Windows\Explorer.exe [3079168]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.21/01/2008 - 03:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.CA87556BBA37D1B4F67C331186618673] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.25/07/2013 - 04:30:49.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 08:11:08.) -- C:\Windows\System32\Winlogon.exe [405504]
[MD5.C4F6CE6087760AD70960C9EB130E7943] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.03/01/2012 - 15:25:21.) -- C:\Windows\system32\Drivers\AFD.sys [404992]
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 08:15:00.) -- C:\Windows\system32\Drivers\atapi.sys [20952]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 06:34:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 16:14:19.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 06:39:41.) -- C:\Windows\system32\Drivers\HDAudBus.sys [948736]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:46:59.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.1485811B320FF8C7EDAD1CAEBB1C6C2B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:39:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135680]
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 06:42:33.) -- C:\Windows\system32\Drivers\netBT.sys [248320]
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.03/03/2013 - 20:13:14.) -- C:\Windows\system32\Drivers\ntfs.sys [1513320]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parall�le.) (.02/11/2006 - 10:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/04/2009 - 06:43:38.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 06:42:19.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 06:43:00.) -- C:\Windows\system32\Drivers\tdx.sys [94720]
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.21/08/2012 - 12:50:57.) -- C:\Windows\system32\Drivers\volsnap.sys [267648]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/1333
~ Mes musiques (My Musics) : 463/4032
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/593
~ Mon Bureau (My Desktop) : 1/14
~ Menu demarrer (Programs) : 1/44
~ Hidden Files: Scanned in 00mn 02s
---\\ Processus lanc�s
[MD5.C72FB9CC856ECFF3B6459B27CB674638] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\iSlim310\Monitor.exe [323584] [PID.2560]
[MD5.8FEDBE7A5D3E5F91FD4B96DAFA4DD197] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1199576] [PID.2732]
[MD5.672593A4AAAB8DC8C0A5C4C1AD0A6048] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18680424] [PID.2740]
[MD5.12F7274EFF53BD6AA89D7608CFE1D678] - (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe [1811880] [PID.2748]
[MD5.65A17BCAF3CEE4C0A771F3B84CB24E30] - (.WIBU-SYSTEMS AG - WkSvMgr.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe [5724472] [PID.2788]
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [PID.2804]
[MD5.CD441BF2F5CFD46B5105891DDFFDFBA2] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1328424] [PID.2912]
[MD5.017335C7AEFA8ED76750DB95A78D6BFA] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [185640] [PID.2920]
[MD5.F0E2D55BB5C7E106E92DF972C1B277A6] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200] [PID.2928]
[MD5.690A6DF02625A46ABEE250C6151B7FBA] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54576] [PID.2936]
[MD5.48BE298F7FD1BEF4D8FBACB04D8D95C4] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576] [PID.2992]
[MD5.0DCAC41EB58A45049BD7FF665C32D5F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.3036]
[MD5.288D8A54FE326AE26AD43F348E646147] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440] [PID.3048]
[MD5.AD8BD96B41C40AC36D803DF267B26EF0] - (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2254768] [PID.3068]
[MD5.48E6868781B4E8BF4B77DBEC7694BCE8] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295072] [PID.304]
[MD5.A3A82800FF19B26B94D2327A2F11067E] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe [821144] [PID.1184]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.2148]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.1116]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4416]
[MD5.34C855FF55E59C36647EC9E8748DC3C3] - (.Pas de propri�taire - PVP.net Patcher Kernel.) -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe [1300376] [PID.3960]
[MD5.4458989C34FA84B5A75DD3ABCFBE786A] - (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624] [PID.4304]
[MD5.2BD54868285B7E988AEB365A82F07660] - (.Pas de propri�taire - PVP.net Patcher.) -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.177\deploy\LoLLauncher.exe [2693008] [PID.184]
[MD5.5B93A9C1BB894EFA4D6429EEADA5007C] - (...) -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.38\deploy\LolClient.exe [74752] [PID.3280]
[MD5.050D1C454A49D4DF8EB5222D352B6630] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917400] [PID.2448]
[MD5.57785A015DED82C287761CA1BD02D532] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.5600]
[MD5.D8425B8D6DC2AA8D871363B0775BCF18] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe [1861512] [PID.5840]
[MD5.5DFE72B9F1FF669070FC032090B7B982] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507312] [PID.5536]
[MD5.0B8FAC5A31E7ED0EA42F8BC46EC80F0F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6747136] [PID.5496]
[MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.500]
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.2532]
[MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.2712]
[MD5.4DB93F4DB7077801D2D82013506AC1D0] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312] [PID.2660]
[MD5.48939D9F350AEF9370F03A1E49A49BE2] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136] [PID.2776]
[MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.2492]
[MD5.88D586E3D6EE17D5C7B8540F72F49148] - (...) -- C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe [149872] [PID.3252]
[MD5.173F13CDEBF8E067629462E9D6E481CB] - (...) -- C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick-connector.exe [769392] [PID.3304]
[MD5.DFEFF67508D3A9AEB1A85D7B0F513B24] - (.Hewlett-Packard Company - LightScribe Service.) -- c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.3364]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.3644]
[MD5.27F1BE4A53441C9F1F48B9ADC145B0A5] - (...) -- C:\Windows\SysWOW64\PnkBstrB.exe [189248] [PID.3656]
[MD5.A0FF419B61AE47E26ADF3BB15DB4F2FE] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608] [PID.3704]
[MD5.EC25ED59540DB3D4797795335409FD64] - (.WIBU-SYSTEMS AG - WibuKey Network server management.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe [587264] [PID.3992]
~ Processes Running: Scanned in 00mn 02s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\D\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\D\AppData\Roaming\Mozilla\Firefox\Profiles\q3qikadi.default\prefs.js
M3 - MFPP: Plugins - [D] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\mystarttb.xml
M2 - MFEP: prefs.js [D - q3qikadi.default\AstroToolbar@toolbarnet.com] [] Astroburn Toolbar v (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\en-GB@dictionaries.addons.mozilla.org] [] British English Dictionary v1.19.1 (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\firefox@tvunetworks.com] [] TVU Web Player v2,5,3,1 (..)
M2 - MFEP: prefs.js [D - q3qikadi.default\{607b689f-7600-45e4-b8e5-887f72dab15c}] [] MyStart Toolbar v3.6 (..)
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
~ Firefox Browser: 25 Legitimates Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
~ IE Browser: 14 Legitimates Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: 0.0.0.0 localhost
O1 - Hosts: 0.0.0.0 localhost
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 120
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Astroburn Toolbar [64Bits] - [HKLM]{EFEED92A-A33D-4873-BA8F-32BAA631E54D} . (...) -- C:\Program Files (x86)\Astroburn Toolbar\ABToolbar64.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Run: [HP Remote Software] . (.Pas de propri�taire - Core functionality module for HP Remote sof.) -- C:\Program Files\Hewlett-Packard\HP Remote\HP REMOTE V1.0.5.exe
O4 - HKLM\..\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKLM\..\Run: [iSlim310_Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\iSlim310\Monitor.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKCU\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKCU\..\Run: [Megakey] C:\Users\D\AppData\Local\Megamedia\Megakey\Megakey.exe (.not file.)
O4 - HKCU\..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\D\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\D\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKLM\..\Wow6432Node\Run: [hpsysdrv] . (.Hewlett-Packard - hpsysdrv.) -- c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePDIRShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [TSMAgent] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [CLMLServer for HP TouchSmart] . (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
O4 - HKLM\..\Wow6432Node\Run: [DVDAgent] . (.CyberLink Corp. - HP DVDSmart Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5.5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5.5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Acrobat Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Megakey] C:\Users\D\AppData\Local\Megamedia\Megakey\Megakey.exe (.not file.)
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\D\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\D\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\D\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-580538878-1438628777-1681904725-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: CyberLink DVD Suite Deluxe.lnk . (.CyberLink - PowerStarter.) -- C:\Program Files (x86)\Cyberlink\CyberLink DVD Suite Deluxe\PowerStarter.exe
O4 - GS\QuickLaunch: HP MediaSmart.lnk . (...) -- c:\Windows\Installer\{D2E8F543-D23A-4A38-AFFC-4BDEBFBA6FDA}\_BD15A4BF3888028F418EC7.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\D\AppData\Roaming\Spotify\spotify.exe
O4 - GS\Programs: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\QuickLaunch: Adobe Master Collection CS5.5 - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5
O4 - GS\QuickLaunch: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) -- C:\Windows\twain_32\escndv\escndv.exe
O4 - GS\QuickLaunch: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\SendTo: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) -- C:\Program Files (x86)\WinSCP\WinSCP.exe
O4 - GS\Desktop: EMPIRES2 - Raccourci.lnk . (.Microsoft Corporation - Age of Empires II.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires II\EMPIRES2.exe
~ Global Startup: Scanned in 00mn 01s
---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{964FC93A-6602-4C30-A2E5-0659BFCEFE6D}: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s
---\\ Cl� de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioth�que de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: JumpStart Push-Button Service (jswpbapi) . (.Atheros Communications, Inc. - JumpStart PushButton Service.) - C:\Program Files (x86)\Jumpstart\jswpbapi.exe
O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) . (...) - C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe (.not file.)
O23 - Service: Norton Internet Security (Norton Internet Security) . (...) - C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (.not file.)
O23 - Service: (vToolbarUpdater15.5.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe (.not file.) =>Toolbar.AVGSearch
O23 - Service: WireHelpSvc (WireHelpSvc) . (...) - C:\Program Files\Common Files\WireHelpSvc.exe
O23 - Service: WibuKey Server (WkSvw32.exe) . (.WIBU-SYSTEMS AG - WibuKey Network server management.) - C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe
~ Services: 21 Legitimates Scanned in 00mn 05s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s
---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
[MD5.C1028CBDF27FCF0AA6D39DF121D0B134] [APT] [RecoveryCD] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe [25656]
[MD5.00000000000000000000000000000000] [APT] [{32801858-8D0C-413B-A798-00EC7AD66FAC}] (...) -- C:\Users\D\DownloaDs\epson324678eu.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{FFAE49A8-0173-40FF-B21D-F05D473C6FA7}] (...) -- E:\DirectX9c\DXSETUP.exe (.not file.) [0]
~ Scheduled Task: 31 Legitimates Scanned in 00mn 03s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
~ Active Setup: 11 Legitimates Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: (SRTSP) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSP64.sys (.not file.)
O41 - Driver: (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.sys (.not file.)
~ Drivers: 81 Legitimates Scanned in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: BrowseToSave - (...) [HKLM][64Bits] -- {860A009E-B68B-4F95-AD7E-FEA95DE92268}
O42 - Logiciel: Coupish - (...) [HKLM][64Bits] -- Coupish
O42 - Logiciel: DWGSee Pro 2013 - (.AutoDWG.) [HKLM][64Bits] -- {70EB46F3-F900-411A-A10C-A9F612D49430}
O42 - Logiciel: ESL Wire 1.11.1 - (.Turtle Entertainment GmbH.) [HKLM][64Bits] -- ESL Wire_is1
O42 - Logiciel: FBX Plugin 2006.08 for Max 9.0 - (...) [HKLM][64Bits] -- FBX Plugin 2006.08 for Max 9.0
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: iSlim 310 - (.KYE.) [HKLM][64Bits] -- {BD4B921E-5A26-4AD2-AD04-C1591443573A}
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
~ Logic: 220 Legitimates Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Alias]
[HKCU\Software\AppDataLow\Software\antiphishing-mystart3_6dn]
[HKCU\Software\AppDataLow\Software\mystarttb]
[HKCU\Software\BitTorrent]
[HKCU\Software\CarbonGames]
[HKCU\Software\Coupish]
[HKCU\Software\ESL Wire]
[HKCU\Software\Pando Networks]
[HKLM\Software\Automobile]
[HKLM\Software\Dog]
[HKLM\Software\Watch]
[HKLM\Software\Wow6432Node\Discreet]
[HKLM\Software\Wow6432Node\KYE]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Valve Lan]
[HKLM\Software\Wow6432Node\WinSte]
~ Key Software: 378 Legitimates Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01/09/2013 - 12:29:32 - [0,471] ----D C:\Program Files (x86)\BrowseToSave
O43 - CFD: 13/07/2011 - 15:55:52 - [0,949] ----D C:\Program Files (x86)\Coupish
O43 - CFD: 19/05/2013 - 22:02:32 - [0] ----D C:\Program Files (x86)\dumps
O43 - CFD: 20/05/2011 - 22:21:50 - [10,281] ----D C:\Program Files (x86)\islim 310
O43 - CFD: 17/07/2011 - 13:11:39 - [4,714] ----D C:\Program Files (x86)\mystarttb
O43 - CFD: 19/05/2011 - 20:11:45 - [7,186] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 07/05/2013 - 08:01:56 - [0,765] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 21/01/2012 - 15:12:48 - [0,000] ----D C:\ProgramData\ESL Wire
O43 - CFD: 16/12/2012 - 12:29:35 - [0] ----D C:\Users\D\AppData\Roaming\Carbon
O43 - CFD: 30/07/2011 - 15:41:00 - [0,204] ----D C:\Users\D\AppData\Roaming\Sites
O43 - CFD: 18/05/2013 - 17:15:39 - [9,323] ----D C:\Users\D\AppData\Roaming\uTorrent
O43 - CFD: 17/07/2011 - 13:11:44 - [155,006] ----D C:\Users\D\AppData\Local\antiphishing-mystart3_6dn
O43 - CFD: 23/01/2012 - 18:31:11 - [0,907] ----D C:\Users\D\AppData\Local\ESL Wire Game Client
O43 - CFD: 25/12/2012 - 15:24:13 - [0,303] ----D C:\Users\D\AppData\Local\GS-LW-Temp
O43 - CFD: 28/03/2013 - 21:27:04 - [0] --HAD C:\Users\D\AppData\Local\noNYHC1PQiJt
O43 - CFD: 06/09/2011 - 21:58:26 - [0] ----D C:\Users\D\AppData\Local\uTorrent
~ Program Folder: 283 Legitimates Scanned in 00mn 05s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.F4B799F48C44D727E3B5F1944878D502] - 01/09/2013 - 12:18:31 ---A- . (...) -- C:\log2.txt [115]
O44 - LFC:[MD5.2D8BF125A8C7C7F9C539D72C0D32597C] - 29/08/2013 - 17:41:08 ---A- . (...) -- C:\UsbFix [Clean 4] PC-DE-D.txt [23134]
O44 - LFC:[MD5.5BC3E10273210D934FA68E1E8B042264] - 28/08/2013 - 12:45:31 ----- . (...) -- C:\UsbFix [Scan 5] PC-DE-D.txt [16787]
O44 - LFC:[MD5.754F1C0FC39AA5AE6F8B2AA82501DE34] - 25/08/2013 - 15:18:35 ----- . (...) -- C:\UsbFix [Clean 3] PC-DE-D.txt [47912]
O44 - LFC:[MD5.CD4947A4CFD9205D010B91F0DD29D1E2] - 25/08/2013 - 15:13:08 ----- . (...) -- C:\UsbFix [Scan 4] PC-DE-D.txt [16200]
O44 - LFC:[MD5.4B281E2720C53B8C30A33D59AD8DF75E] - 16/08/2013 - 23:01:53 ---A- . (.TMRG, Inc. - Relevant-Knowledge.) -- C:\Windows\SysNative\rlls64.dll [859416]
O44 - LFC:[MD5.4B281E2720C53B8C30A33D59AD8DF75E] - 16/08/2013 - 23:01:53 RSHAD . (.TMRG, Inc. - Relevant-Knowledge.) -- C:\Windows\System32\rlls64.dll [859416]
O44 - LFC:[MD5.731D3D7F2414CAD3BE52AAC5067E532A] - 07/08/2013 - 22:32:03 ----- . (...) -- C:\UsbFix [Clean 2] PC-DE-D.txt [47383]
O44 - LFC:[MD5.C4DFED004EACA831DA7975D2E8E1484D] - 07/08/2013 - 22:30:05 ----- . (...) -- C:\UsbFix [Scan 3] PC-DE-D.txt [16035]
O44 - LFC:[MD5.FFB012AD70C6A298D340BD37408D4A07] - 05/08/2013 - 15:10:57 ----- . (...) -- C:\UsbFix [Clean 1] PC-DE-D.txt [23595]
O44 - LFC:[MD5.7124A435EDC9B24B4D87ADAA5C7CB838] - 05/08/2013 - 15:00:23 ----- . (...) -- C:\UsbFix [Scan 2] PC-DE-D.txt [17585]
~ Files: 93 Legitimates Scanned in 00mn 03s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.85202C3F39836645CB7CD1CF25112EBD] - 01/09/2013 - 08:44:57 ---A- - C:\Windows\Prefetch\RICHVI~1.EXE-4ABD8B87.pf
O45 - LFCP:[MD5.E47172ACFCB3F2D6855CE2BB963E04F8] - 01/09/2013 - 08:49:29 ---A- - C:\Windows\Prefetch\RLVKNLG32.EXE-00E8EBC2.pf
O45 - LFCP:[MD5.DC27AA577AA2FD2CEDC909F5400AABC8] - 01/09/2013 - 08:49:29 ---A- - C:\Windows\Prefetch\RLVKNLG64.EXE-57EBB483.pf
O45 - LFCP:[MD5.3CF1C075D027D57EFE866326EB7A4208] - 01/09/2013 - 08:50:29 ---A- - C:\Windows\Prefetch\RLVKNLG.EXE-FF9A95B1.pf
O45 - LFCP:[MD5.88524C6754D660ED02EF91655F9658F2] - 01/09/2013 - 09:59:49 ---A- - C:\Windows\Prefetch\SC2SWITCHER.EXE-72371F9A.pf
O45 - LFCP:[MD5.DB4A24941408DD08B4406BA255481256] - 01/09/2013 - 09:59:51 ---A- - C:\Windows\Prefetch\SC2.EXE-2B6AD48D.pf
O45 - LFCP:[MD5.6130962E8D40C760D63AA3A63958444F] - 01/09/2013 - 11:34:37 ---A- - C:\Windows\Prefetch\HP REMOTE V1.0.5.EXE-D4BF8685.pf
O45 - LFCP:[MD5.F1BBC33115FC118DA5D251F857C594C1] - 01/09/2013 - 11:35:06 ---A- - C:\Windows\Prefetch\INPUTPERSONALIZATION.EXE-EE55283A.pf
O45 - LFCP:[MD5.63390613D2E562770DE6CF5A483ADEC5] - 01/09/2013 - 11:53:35 ---A- - C:\Windows\Prefetch\MADHCCTRL.EXE-E5B4FF7C.pf
O45 - LFCP:[MD5.434F2D29F47584388C58D94A460105B4] - 01/09/2013 - 12:21:42 ---A- - C:\Windows\Prefetch\PMB.EXE-C5A7F854.pf
O45 - LFCP:[MD5.63FEE0719AEAF67F2F5B7960E911D6DD] - 28/08/2013 - 12:56:40 ---A- - C:\Windows\Prefetch\AVGNSA.EXE-2C2436FA.pf
O45 - LFCP:[MD5.247DDBFCA1EFD64838587B25FFCECFC6] - 28/08/2013 - 12:56:40 ---A- - C:\Windows\Prefetch\AVGRSA.EXE-0F92781B.pf
O45 - LFCP:[MD5.37170E000656073ECBF1B94C8017B428] - 29/08/2013 - 11:43:02 ---A- - C:\Windows\Prefetch\UPDATERSTARTUPUTILITY.EXE-5802AED6.pf
O45 - LFCP:[MD5.64E6348FCF876D02018C8952C6B92BD2] - 29/08/2013 - 12:20:53 ---A- - C:\Windows\Prefetch\29.0.1547.62_28.0.1500.95_CHR-B6BD998D.pf
O45 - LFCP:[MD5.C38B8E7BC03B876E1D8AC01FD22631DB] - 29/08/2013 - 17:35:08 ---A- - C:\Windows\Prefetch\GO.EXE-759C3391.pf
O45 - LFCP:[MD5.0F6C955E32DE7D3F0EE400A42809EC53] - 29/08/2013 - 17:41:01 ---A- - C:\Windows\Prefetch\GREP.COM-6800C3CB.pf
O45 - LFCP:[MD5.FD5C2AFA5178C004BC5AEFF0F31B687C] - 29/08/2013 - 18:13:39 ---A- - C:\Windows\Prefetch\MIRC.EXE-AB639CDA.pf
O45 - LFCP:[MD5.85E62825E37E2C5909985E3981F8EB21] - 29/08/2013 - 18:17:22 ---A- - C:\Windows\Prefetch\SETUP(1).EXE-7503203A.pf
O45 - LFCP:[MD5.4C2468A85FB7A779078911AFE430F7DB] - 30/08/2013 - 14:21:34 ---A- - C:\Windows\Prefetch\HL.EXE-916C0F09.pf
O45 - LFCP:[MD5.A2EC622434C3F079FAA80B99D19360DF] - 30/08/2013 - 14:46:37 ---A- - C:\Windows\Prefetch\WORDCONV.EXE-95C4E1CF.pf
~ Prefetcher: 137 Legitimates Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
~ LSA: 7 Legitimates Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
~ CBS: 13 Legitimates Scanned in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{0f6d2ea1-0ef0-11e3-93e2-00ff01000001}\AutoRun\command. (.Froyo - Android USB Driver Setup.) -- G:\autorun.exe
~ Keys: Scanned in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 4 Legitimates Scanned in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 18 Legitimates Scanned in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 8 Legitimates Scanned in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [486456]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 01/09/2013 - 00:17:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831231657-l.list [2311]
O61 - LFC: 01/09/2013 - 00:17:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831231657-m.list [57143]
O61 - LFC: 01/09/2013 - 00:48:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831234829-m.list [5687]
O61 - LFC: 01/09/2013 - 01:20:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901001959-l.list [2957]
O61 - LFC: 01/09/2013 - 01:20:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901001959-m.list [16260]
O61 - LFC: 01/09/2013 - 01:51:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901005132-m.list [2050]
O61 - LFC: 01/09/2013 - 02:23:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901012248-l.list [3782]
O61 - LFC: 01/09/2013 - 02:23:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901012248-m.list [9496]
O61 - LFC: 01/09/2013 - 02:54:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901015426-m.list [4700]
O61 - LFC: 01/09/2013 - 03:25:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901022541-l.list [2208]
O61 - LFC: 01/09/2013 - 03:25:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901022541-m.list [16988]
O61 - LFC: 01/09/2013 - 03:57:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901025707-m.list [12284]
O61 - LFC: 01/09/2013 - 04:28:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901032823-l.list [3530]
O61 - LFC: 01/09/2013 - 04:28:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901032823-m.list [26355]
O61 - LFC: 01/09/2013 - 05:00:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901035950-m.list [1322]
O61 - LFC: 01/09/2013 - 05:31:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901043108-l.list [3310]
O61 - LFC: 01/09/2013 - 05:31:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901043108-m.list [11152]
O61 - LFC: 01/09/2013 - 06:02:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901050231-l.list [2414]
O61 - LFC: 01/09/2013 - 06:02:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901050231-m.list [1999]
O61 - LFC: 01/09/2013 - 06:34:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901053344-l.list [53]
O61 - LFC: 01/09/2013 - 06:34:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901053344-m.list [3728]
O61 - LFC: 01/09/2013 - 07:05:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901060501-l.list [2830]
O61 - LFC: 01/09/2013 - 07:05:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901060501-m.list [161]
O61 - LFC: 01/09/2013 - 07:37:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901063714-l.list [1698712]
O61 - LFC: 01/09/2013 - 07:37:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901063714-m.list [10970]
O61 - LFC: 01/09/2013 - 08:08:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901070827-l.list [1229]
O61 - LFC: 01/09/2013 - 08:08:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901070827-m.list [11440]
O61 - LFC: 01/09/2013 - 08:39:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901073929-m.list [121439]
O61 - LFC: 01/09/2013 - 08:50:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831234829-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901005132-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901015426-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901025707-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901035950-l.list [0]
O61 - LFC: 01/09/2013 - 08:50:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901073929-l.list [0]
O61 - LFC: 01/09/2013 - 09:10:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901081039-l.list [3161]
O61 - LFC: 01/09/2013 - 09:10:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901081039-m.list [300055]
O61 - LFC: 01/09/2013 - 09:42:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901084149-l.list [219]
O61 - LFC: 01/09/2013 - 09:42:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901084149-m.list [345831]
O61 - LFC: 01/09/2013 - 10:13:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901091302-l.list [5031]
O61 - LFC: 01/09/2013 - 10:13:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901091302-m.list [71334]
O61 - LFC: 01/09/2013 - 10:44:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901094412-m.list [6896]
O61 - LFC: 01/09/2013 - 10:46:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901094412-l.list [0]
O61 - LFC: 01/09/2013 - 11:15:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901101524-l.list [4110]
O61 - LFC: 01/09/2013 - 11:15:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130901101524-m.list [16464]
O61 - LFC: 01/09/2013 - 11:18:41 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [268176]
O61 - LFC: 01/09/2013 - 11:19:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\catalog.list [28093]
O61 - LFC: 01/09/2013 - 11:19:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\temp.zip [4602]
O61 - LFC: 01/09/2013 - 11:50:17 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\Local State [41941]
O61 - LFC: 01/09/2013 - 11:50:18 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5]
O61 - LFC: 01/09/2013 - 11:53:34 ---A- C:\Users\D\AppData\Roaming\Media Player Classic\default.mpcpl [77]
O61 - LFC: 01/09/2013 - 12:21:32 ---A- C:\Users\D\AppData\Local\PMB Files\cert\cert8.db [65536]
O61 - LFC: 01/09/2013 - 12:21:32 ---A- C:\Users\D\AppData\Local\PMB Files\cert\secmod.db [16384]
O61 - LFC: 01/09/2013 - 12:21:33 ---A- C:\Users\D\AppData\Local\PMB Files\cert\key3.db [16384]
O61 - LFC: 01/09/2013 - 12:32:25 ---A- C:\Users\D\AppData\Local\PMB Files\pando.save [923]
O61 - LFC: 29/08/2013 - 00:06:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828230629-l.list [4638]
O61 - LFC: 29/08/2013 - 00:06:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828230629-m.list [37779]
O61 - LFC: 29/08/2013 - 00:38:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828233755-m.list [11810]
O61 - LFC: 29/08/2013 - 01:09:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829000913-l.list [3491]
O61 - LFC: 29/08/2013 - 01:09:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829000913-m.list [1556]
O61 - LFC: 29/08/2013 - 01:40:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829004039-m.list [14722]
O61 - LFC: 29/08/2013 - 02:12:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829011205-l.list [2820]
O61 - LFC: 29/08/2013 - 02:12:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829011205-m.list [1068]
O61 - LFC: 29/08/2013 - 02:43:51 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829014333-m.list [40967]
O61 - LFC: 29/08/2013 - 03:15:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829021500-l.list [4339]
O61 - LFC: 29/08/2013 - 03:15:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829021500-m.list [12053]
O61 - LFC: 29/08/2013 - 03:46:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829024630-m.list [22005]
O61 - LFC: 29/08/2013 - 04:18:07 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829031749-l.list [3430]
O61 - LFC: 29/08/2013 - 04:18:07 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829031749-m.list [7943]
O61 - LFC: 29/08/2013 - 04:49:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829034929-m.list [9441]
O61 - LFC: 29/08/2013 - 05:21:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829042054-l.list [3261]
O61 - LFC: 29/08/2013 - 05:21:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829042054-m.list [5547]
O61 - LFC: 29/08/2013 - 05:52:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829045226-m.list [16812]
O61 - LFC: 29/08/2013 - 06:24:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829052344-l.list [2735]
O61 - LFC: 29/08/2013 - 06:24:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829052344-m.list [24492]
O61 - LFC: 29/08/2013 - 06:55:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829055515-m.list [27272]
O61 - LFC: 29/08/2013 - 07:28:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829062759-l.list [1412076]
O61 - LFC: 29/08/2013 - 07:28:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829062759-m.list [55618]
O61 - LFC: 29/08/2013 - 07:59:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829065934-m.list [42211]
O61 - LFC: 29/08/2013 - 08:31:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829073054-l.list [2898]
O61 - LFC: 29/08/2013 - 08:31:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829073054-m.list [57335]
O61 - LFC: 29/08/2013 - 09:02:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829080229-m.list [173129]
O61 - LFC: 29/08/2013 - 09:34:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829083352-l.list [2919]
O61 - LFC: 29/08/2013 - 09:34:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829083352-m.list [302042]
O61 - LFC: 29/08/2013 - 10:05:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829090521-l.list [3745]
O61 - LFC: 29/08/2013 - 10:05:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829090521-m.list [106713]
O61 - LFC: 29/08/2013 - 10:37:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829093643-m.list [20754]
O61 - LFC: 29/08/2013 - 11:08:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829100806-l.list [3894]
O61 - LFC: 29/08/2013 - 11:08:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829100806-m.list [9286]
O61 - LFC: 29/08/2013 - 11:37:17 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130828233755-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829004039-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:19 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829014333-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829024630-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829034929-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829045226-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829055515-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829065934-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829080229-l.list [0]
O61 - LFC: 29/08/2013 - 11:37:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829093643-l.list [0]
O61 - LFC: 29/08/2013 - 11:39:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829103925-m.list [4635]
O61 - LFC: 29/08/2013 - 11:45:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829103925-l.list [0]
O61 - LFC: 29/08/2013 - 12:11:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829111043-l.list [3419]
O61 - LFC: 29/08/2013 - 12:11:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829111043-m.list [15903]
O61 - LFC: 29/08/2013 - 12:42:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829114155-m.list [4815]
O61 - LFC: 29/08/2013 - 12:46:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829114155-l.list [0]
O61 - LFC: 29/08/2013 - 13:13:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829121309-l.list [4075]
O61 - LFC: 29/08/2013 - 13:13:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829121309-m.list [14081]
O61 - LFC: 29/08/2013 - 13:44:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829124422-m.list [10021]
O61 - LFC: 29/08/2013 - 13:46:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829124422-l.list [0]
O61 - LFC: 29/08/2013 - 14:15:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829131537-l.list [2725]
O61 - LFC: 29/08/2013 - 14:15:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829131537-m.list [3417]
O61 - LFC: 29/08/2013 - 14:47:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829134651-m.list [27200]
O61 - LFC: 29/08/2013 - 14:51:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829134651-l.list [0]
O61 - LFC: 29/08/2013 - 15:18:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829141805-l.list [2416]
O61 - LFC: 29/08/2013 - 15:18:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829141805-m.list [29955]
O61 - LFC: 29/08/2013 - 15:49:36 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829144919-m.list [15719]
O61 - LFC: 29/08/2013 - 15:51:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829144919-l.list [0]
O61 - LFC: 29/08/2013 - 16:20:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829152025-l.list [2895]
O61 - LFC: 29/08/2013 - 16:20:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829152025-m.list [10607]
O61 - LFC: 29/08/2013 - 16:51:56 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829155139-m.list [3672]
O61 - LFC: 29/08/2013 - 16:52:19 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829155139-l.list [0]
O61 - LFC: 29/08/2013 - 17:23:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829162256-l.list [2547]
O61 - LFC: 29/08/2013 - 17:23:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829162256-m.list [6738]
O61 - LFC: 29/08/2013 - 17:54:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829165408-m.list [16137]
O61 - LFC: 29/08/2013 - 18:17:10 ---A- C:\Users\D\Downloads\setup(1).exe [2326976]
O61 - LFC: 29/08/2013 - 18:25:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829172521-l.list [3610]
O61 - LFC: 29/08/2013 - 18:25:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829172521-m.list [4708]
O61 - LFC: 29/08/2013 - 18:56:52 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829175634-m.list [14639]
O61 - LFC: 29/08/2013 - 19:28:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829182751-m.list [5182]
O61 - LFC: 29/08/2013 - 19:59:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829185909-m.list [10730]
O61 - LFC: 29/08/2013 - 20:30:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829193026-l.list [3518]
O61 - LFC: 29/08/2013 - 20:30:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829193026-m.list [9640]
O61 - LFC: 29/08/2013 - 21:01:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829200142-l.list [127]
O61 - LFC: 29/08/2013 - 21:01:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829200142-m.list [13433]
O61 - LFC: 29/08/2013 - 21:33:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829203308-l.list [2883]
O61 - LFC: 29/08/2013 - 21:33:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829203308-m.list [28481]
O61 - LFC: 29/08/2013 - 22:04:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829210423-l.list [2004]
O61 - LFC: 29/08/2013 - 22:04:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829210423-m.list [11183]
O61 - LFC: 29/08/2013 - 22:36:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829213551-m.list [3797]
O61 - LFC: 29/08/2013 - 23:07:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829220707-l.list [3128]
O61 - LFC: 29/08/2013 - 23:07:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829220707-m.list [26327]
O61 - LFC: 29/08/2013 - 23:38:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829223835-m.list [45978]
O61 - LFC: 30/08/2013 - 00:10:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829230950-l.list [2773]
O61 - LFC: 30/08/2013 - 00:10:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829230950-m.list [5340]
O61 - LFC: 30/08/2013 - 01:12:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830001222-l.list [2297]
O61 - LFC: 30/08/2013 - 01:12:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830001222-m.list [9277]
O61 - LFC: 30/08/2013 - 01:44:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830004352-m.list [61677]
O61 - LFC: 30/08/2013 - 02:15:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830011507-l.list [3209]
O61 - LFC: 30/08/2013 - 02:15:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830011507-m.list [11071]
O61 - LFC: 30/08/2013 - 02:46:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830014634-m.list [12512]
O61 - LFC: 30/08/2013 - 03:18:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830021751-l.list [2114]
O61 - LFC: 30/08/2013 - 03:18:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830021751-m.list [19362]
O61 - LFC: 30/08/2013 - 03:49:36 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830024918-m.list [10285]
O61 - LFC: 30/08/2013 - 04:21:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830032047-l.list [1323]
O61 - LFC: 30/08/2013 - 04:21:05 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830032047-m.list [101846]
O61 - LFC: 30/08/2013 - 04:52:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830035229-m.list [61403]
O61 - LFC: 30/08/2013 - 05:24:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830042357-l.list [1254]
O61 - LFC: 30/08/2013 - 05:24:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830042357-m.list [57737]
O61 - LFC: 30/08/2013 - 05:55:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830045539-m.list [5960]
O61 - LFC: 30/08/2013 - 06:27:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830052708-l.list [2103]
O61 - LFC: 30/08/2013 - 06:27:28 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830052708-m.list [23734]
O61 - LFC: 30/08/2013 - 07:00:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830055958-l.list [1711967]
O61 - LFC: 30/08/2013 - 07:00:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830055958-m.list [24170]
O61 - LFC: 30/08/2013 - 07:31:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830063120-l.list [1514]
O61 - LFC: 30/08/2013 - 07:31:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830063120-m.list [17213]
O61 - LFC: 30/08/2013 - 08:03:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830070244-l.list [54]
O61 - LFC: 30/08/2013 - 08:03:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830070244-m.list [15608]
O61 - LFC: 30/08/2013 - 08:34:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830073405-l.list [2537]
O61 - LFC: 30/08/2013 - 08:34:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830073405-m.list [20885]
O61 - LFC: 30/08/2013 - 09:05:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830080540-l.list [1141]
O61 - LFC: 30/08/2013 - 09:05:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830080540-m.list [200471]
O61 - LFC: 30/08/2013 - 09:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830083706-l.list [328]
O61 - LFC: 30/08/2013 - 09:37:22 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830083706-m.list [235758]
O61 - LFC: 30/08/2013 - 10:08:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830090838-l.list [2191]
O61 - LFC: 30/08/2013 - 10:08:54 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830090838-m.list [15095]
O61 - LFC: 30/08/2013 - 10:26:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829165408-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829175634-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829182751-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:41 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829185909-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829213551-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130829223835-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:45 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830004352-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830014634-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830024918-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830035229-l.list [0]
O61 - LFC: 30/08/2013 - 10:26:50 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830045539-l.list [0]
O61 - LFC: 30/08/2013 - 10:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830093956-m.list [5684]
O61 - LFC: 30/08/2013 - 10:42:24 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830093956-l.list [0]
O61 - LFC: 30/08/2013 - 11:11:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830101112-l.list [2916]
O61 - LFC: 30/08/2013 - 11:11:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830101112-m.list [13908]
O61 - LFC: 30/08/2013 - 11:42:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830104231-m.list [4606]
O61 - LFC: 30/08/2013 - 11:43:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830104231-l.list [0]
O61 - LFC: 30/08/2013 - 12:14:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830111345-l.list [1633]
O61 - LFC: 30/08/2013 - 12:14:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830111345-m.list [6700]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_pnacl_json [379]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbeginS_o [2432]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o [2008]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o [2120]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtendS_o [1343]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o [1342]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe [2221512]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a [6416]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a [46812]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_eh_a [234888]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a [167354]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a [1710]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe [8944040]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\manifest.fingerprint [66]
O61 - LFC: 30/08/2013 - 12:31:44 ---A- C:\Users\D\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.11755\manifest.json [575]
O61 - LFC: 30/08/2013 - 12:45:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830114454-m.list [7824]
O61 - LFC: 30/08/2013 - 12:47:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830114454-l.list [0]
O61 - LFC: 30/08/2013 - 13:16:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830121608-l.list [3070]
O61 - LFC: 30/08/2013 - 13:16:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830121608-m.list [6677]
O61 - LFC: 30/08/2013 - 13:47:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830124718-m.list [10565]
O61 - LFC: 30/08/2013 - 13:51:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830124718-l.list [0]
O61 - LFC: 30/08/2013 - 14:18:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830131833-l.list [2059]
O61 - LFC: 30/08/2013 - 14:18:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830131833-m.list [1818]
O61 - LFC: 30/08/2013 - 14:50:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830134944-m.list [14169]
O61 - LFC: 30/08/2013 - 14:52:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830134944-l.list [0]
O61 - LFC: 30/08/2013 - 15:03:35 ---A- C:\Users\D\CV Thomas VINCE.doc [413696]
O61 - LFC: 30/08/2013 - 15:21:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830142047-l.list [1631]
O61 - LFC: 30/08/2013 - 15:21:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830142047-m.list [6091]
O61 - LFC: 30/08/2013 - 15:52:15 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830145159-m.list [22153]
O61 - LFC: 30/08/2013 - 16:23:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830152313-l.list [2617]
O61 - LFC: 30/08/2013 - 16:23:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830152313-m.list [7122]
O61 - LFC: 30/08/2013 - 16:35:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830145159-l.list [0]
O61 - LFC: 30/08/2013 - 16:54:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830155424-m.list [17445]
O61 - LFC: 30/08/2013 - 17:14:32 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830155424-l.list [0]
O61 - LFC: 30/08/2013 - 17:25:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830162538-l.list [2596]
O61 - LFC: 30/08/2013 - 17:25:53 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830162538-m.list [9617]
O61 - LFC: 30/08/2013 - 17:57:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830165648-m.list [19134]
O61 - LFC: 30/08/2013 - 18:28:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830172802-l.list [2173]
O61 - LFC: 30/08/2013 - 18:28:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830172802-m.list [19636]
O61 - LFC: 30/08/2013 - 18:45:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830165648-l.list [0]
O61 - LFC: 30/08/2013 - 18:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830175913-l.list [42]
O61 - LFC: 30/08/2013 - 18:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830175913-m.list [9038]
O61 - LFC: 30/08/2013 - 19:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830183026-l.list [3633]
O61 - LFC: 30/08/2013 - 19:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830183026-m.list [14526]
O61 - LFC: 30/08/2013 - 20:02:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830190144-m.list [5466]
O61 - LFC: 30/08/2013 - 20:33:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830193307-l.list [4115]
O61 - LFC: 30/08/2013 - 20:33:23 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830193307-m.list [21870]
O61 - LFC: 30/08/2013 - 21:04:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830200423-l.list [7764]
O61 - LFC: 30/08/2013 - 21:04:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830200423-m.list [10867]
O61 - LFC: 30/08/2013 - 21:11:20 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830190144-l.list [0]
O61 - LFC: 30/08/2013 - 21:36:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830203550-m.list [47863]
O61 - LFC: 30/08/2013 - 22:07:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830210704-l.list [5020]
O61 - LFC: 30/08/2013 - 22:07:21 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830210704-m.list [18321]
O61 - LFC: 30/08/2013 - 22:10:34 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830203550-l.list [0]
O61 - LFC: 30/08/2013 - 22:38:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830213839-m.list [15693]
O61 - LFC: 30/08/2013 - 23:10:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830220952-l.list [15976]
O61 - LFC: 30/08/2013 - 23:10:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830220952-m.list [4888]
O61 - LFC: 30/08/2013 - 23:41:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830224131-m.list [28154]
O61 - LFC: 31/08/2013 - 00:13:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830231254-l.list [15829]
O61 - LFC: 31/08/2013 - 00:13:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830231254-m.list [2893]
O61 - LFC: 31/08/2013 - 00:44:39 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830234423-m.list [19338]
O61 - LFC: 31/08/2013 - 01:16:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831001548-l.list [8900]
O61 - LFC: 31/08/2013 - 01:16:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831001548-m.list [12877]
O61 - LFC: 31/08/2013 - 01:47:25 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831004710-m.list [18418]
O61 - LFC: 31/08/2013 - 02:18:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831011828-l.list [7135]
O61 - LFC: 31/08/2013 - 02:18:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831011828-m.list [7752]
O61 - LFC: 31/08/2013 - 02:50:09 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831014954-m.list [26676]
O61 - LFC: 31/08/2013 - 03:21:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831022114-l.list [3266]
O61 - LFC: 31/08/2013 - 03:21:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831022114-m.list [16194]
O61 - LFC: 31/08/2013 - 03:53:08 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831025253-m.list [20163]
O61 - LFC: 31/08/2013 - 04:24:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831032416-l.list [3281]
O61 - LFC: 31/08/2013 - 04:24:31 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831032416-m.list [84112]
O61 - LFC: 31/08/2013 - 04:56:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831035548-m.list [92503]
O61 - LFC: 31/08/2013 - 05:27:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831042713-l.list [3473]
O61 - LFC: 31/08/2013 - 05:27:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831042713-m.list [7632]
O61 - LFC: 31/08/2013 - 05:59:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831045858-l.list [74]
O61 - LFC: 31/08/2013 - 05:59:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831045858-m.list [32974]
O61 - LFC: 31/08/2013 - 06:30:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831053013-l.list [3014]
O61 - LFC: 31/08/2013 - 06:30:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831053013-m.list [5085]
O61 - LFC: 31/08/2013 - 07:02:10 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831060154-m.list [14476]
O61 - LFC: 31/08/2013 - 07:35:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831063447-l.list [1140262]
O61 - LFC: 31/08/2013 - 07:35:03 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831063447-m.list [19757]
O61 - LFC: 31/08/2013 - 08:06:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831070613-l.list [3263]
O61 - LFC: 31/08/2013 - 08:06:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831070613-m.list [11778]
O61 - LFC: 31/08/2013 - 08:37:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831073729-m.list [14893]
O61 - LFC: 31/08/2013 - 09:09:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831080848-l.list [3253]
O61 - LFC: 31/08/2013 - 09:09:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831080848-m.list [252803]
O61 - LFC: 31/08/2013 - 09:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831083957-l.list [260]
O61 - LFC: 31/08/2013 - 09:40:12 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831083957-m.list [94425]
O61 - LFC: 31/08/2013 - 10:11:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831091123-l.list [3113]
O61 - LFC: 31/08/2013 - 10:11:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831091123-m.list [153288]
O61 - LFC: 31/08/2013 - 10:42:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831094242-m.list [121974]
O61 - LFC: 31/08/2013 - 10:47:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830213839-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:55 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830224131-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:56 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130830234423-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:57 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831004710-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831014954-l.list [0]
O61 - LFC: 31/08/2013 - 10:47:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831025253-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:00 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831035548-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831060154-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831073729-l.list [0]
O61 - LFC: 31/08/2013 - 10:48:06 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831094242-l.list [0]
O61 - LFC: 31/08/2013 - 11:14:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831101403-l.list [3715]
O61 - LFC: 31/08/2013 - 11:14:18 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831101403-m.list [237628]
O61 - LFC: 31/08/2013 - 11:45:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831104514-m.list [69081]
O61 - LFC: 31/08/2013 - 12:16:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831111633-l.list [3302]
O61 - LFC: 31/08/2013 - 12:16:49 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831111633-m.list [112902]
O61 - LFC: 31/08/2013 - 12:48:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831114744-m.list [73713]
O61 - LFC: 31/08/2013 - 13:19:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831121859-l.list [3864]
O61 - LFC: 31/08/2013 - 13:19:14 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831121859-m.list [32081]
O61 - LFC: 31/08/2013 - 13:50:26 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831125011-m.list [7024]
O61 - LFC: 31/08/2013 - 13:59:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831104514-l.list [0]
O61 - LFC: 31/08/2013 - 13:59:47 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831114744-l.list [0]
O61 - LFC: 31/08/2013 - 13:59:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831125011-l.list [0]
O61 - LFC: 31/08/2013 - 14:06:10 ---A- C:\Users\D\Downloads\ZHPDiag2(1).exe [5074768]
O61 - LFC: 31/08/2013 - 14:21:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831132112-l.list [4378]
O61 - LFC: 31/08/2013 - 14:21:27 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831132112-m.list [4170]
O61 - LFC: 31/08/2013 - 14:52:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831135223-m.list [18168]
O61 - LFC: 31/08/2013 - 14:54:16 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831135223-l.list [0]
O61 - LFC: 31/08/2013 - 15:23:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831142333-l.list [1852]
O61 - LFC: 31/08/2013 - 15:23:48 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831142333-m.list [24615]
O61 - LFC: 31/08/2013 - 15:54:58 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831145444-m.list [10707]
O61 - LFC: 31/08/2013 - 16:56:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831155638-l.list [2197]
O61 - LFC: 31/08/2013 - 16:56:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831155638-m.list [46200]
O61 - LFC: 31/08/2013 - 17:28:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831162759-l.list [2317]
O61 - LFC: 31/08/2013 - 17:28:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831162759-m.list [9120]
O61 - LFC: 31/08/2013 - 17:59:29 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831165917-m.list [13655]
O61 - LFC: 31/08/2013 - 18:30:41 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831145444-l.list [0]
O61 - LFC: 31/08/2013 - 18:30:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831165917-l.list [0]
O61 - LFC: 31/08/2013 - 18:30:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831173033-l.list [2369]
O61 - LFC: 31/08/2013 - 18:30:46 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831173033-m.list [5018]
O61 - LFC: 31/08/2013 - 19:02:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831180151-l.list [69]
O61 - LFC: 31/08/2013 - 19:02:04 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831180151-m.list [8620]
O61 - LFC: 31/08/2013 - 19:33:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831183330-l.list [3358]
O61 - LFC: 31/08/2013 - 19:33:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831183330-m.list [63725]
O61 - LFC: 31/08/2013 - 20:05:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831190448-l.list [2655]
O61 - LFC: 31/08/2013 - 20:05:02 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831190448-m.list [3537]
O61 - LFC: 31/08/2013 - 20:36:38 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831193623-m.list [8279]
O61 - LFC: 31/08/2013 - 20:38:30 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831193623-l.list [0]
O61 - LFC: 31/08/2013 - 21:08:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831200746-l.list [2407]
O61 - LFC: 31/08/2013 - 21:08:01 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831200746-m.list [28991]
O61 - LFC: 31/08/2013 - 21:39:43 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831203929-m.list [42561]
O61 - LFC: 31/08/2013 - 21:43:40 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831203929-l.list [0]
O61 - LFC: 31/08/2013 - 22:11:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831211057-l.list [2570]
O61 - LFC: 31/08/2013 - 22:11:11 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831211057-m.list [7225]
O61 - LFC: 31/08/2013 - 22:42:42 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831214227-m.list [16894]
O61 - LFC: 31/08/2013 - 22:44:13 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831214227-l.list [0]
O61 - LFC: 31/08/2013 - 23:13:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831221344-l.list [2406]
O61 - LFC: 31/08/2013 - 23:13:59 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831221344-m.list [14855]
O61 - LFC: 31/08/2013 - 23:45:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831224528-l.list [209]
O61 - LFC: 31/08/2013 - 23:45:44 ---A- C:\Users\D\AppData\Local\antiphishing-mystart3_6dn\data\130831224528-m.list [1180]
~ 49 Fichiers temporaires (Temporary files)
~ Files: 846 Legitimates Scanned in 00mn 18s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.net.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 28/11/2011 - C:\Windows\system32\drivers\ESLWireACD.sys (ESLWireAC) .(.
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (SRTSP) .(...) - LEGACY_SRTSP
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (SRTSPX) .(...) - LEGACY_SRTSPX
~ Legacy: 84 Legitimates Scanned in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
~ FASS Keys: 21 Legitimates Scanned in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {37C5A1D9-DC2B-4C82-A911-64F4C83E0F96} - (Yahoo!) - http://fr.search.yahoo.com
~ Keys: Scanned in 00mn 00s
---\\ Crack & Keygen Files (O82)
F:\CAVE\Autodesk 3ds max 9 (3d Studio Max 9) FULL + Crack\3dsmax9Trial\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\Crack\3dsmax9-keygen.zip
F:\CAVE\Autodesk 3ds max 9 (3d Studio Max 9) FULL + Crack\3dsmax9Trial\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\AUTODESK_3D_STUDIO_MAX_V9.0-XFORCE\Crack\max9keygen.exe
F:\CAVE\corbeille\YnK\PhotoShop\Adobe Photoshop CS5\Keygen\Patch Adobe Photoshop Extended CS5.exe
F:\CAVE\corbeille\YnK\AutoCAD 2009\AutoCAD.2009.Keygen.x64(64bit).+.x86(32bit).1919.rar
~ Files: Scanned in 02mn 02s
---\\ Recherche des services d�marr�s par Svchost (O83)
~ Services: 31 Legitimates Scanned in 00mn 00s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.262BB712BB373AA91888FBD36BC101A9] [SPRF][08/08/2012] (...) -- C:\ProgramData\nvModes.dat [56499]
[MD5.01145E4C20F362FCED9078B0B7DAEB6C] [SPRF][12/02/2013] (...) -- C:\Users\D\AppData\Local\d3d9caps.dat [680]
[MD5.D07444BDB22757545CD2FA91654F2FD0] [SPRF][24/08/2013] (...) -- C:\Users\D\AppData\Local\Temp\Quarantine.exe [328019]
[MD5.02A2128B3D3575C8050CA3EF3CC7E2A7] [SPRF][21/04/2013] (...) -- C:\Users\D\AppData\Roaming\wklnhst.dat [848]
[MD5.F7AF924D0D951FF8F7B05AD2E4FF50D3] [SPRF][01/09/2013] (...) -- C:\Users\D\Desktop\adwcleaner.exe [994642]
[MD5.A77C1DCDE677571807CEBFDC3357EA87] [SPRF][01/09/2013] (.Thisisu - Junkware Removal Tool.) -- C:\Users\D\Desktop\JRT.exe [1027511]
[MD5.E79F77AB73F46E9760C199C2DE8FCB5C] [SPRF][05/08/2013] (.El Desaparecido - SosVirus.net - UsbFix - Remove malware from yours drive!.) -- C:\Users\D\Desktop\usbfix.exe [1030081]
[MD5.3317698F2090DD811F0AA93190E13C82] [SPRF][05/03/2005] (.Microsoft Corporation - Microsoft GDI+.) -- C:\Windows\Downloaded Program Files\gdiplus.dll [1706800]
[MD5.55A78B0E5AE741DDE96E2D9345602F5F] [SPRF][05/03/2005] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropENU.dll [114848]
~ Files: Scanned in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{98272926-B5E0-4FB3-9423-0A23D23D1872}" | In - None - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "TCP Query User{2E78396A-9E35-46C9-8E99-95B7F0D7CC9F}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.)
O87 - FAEL: "UDP Query User{94973952-4977-49FE-979E-CFBF270729E5}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.)
O87 - FAEL: "TCP Query User{5E6CDFEF-48EC-46A6-9403-2CE8B1945AA6}C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{0403306C-1167-414C-9EFC-BFEEF9705ECE}C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base18574\sc2.exe (.not file.)
O87 - FAEL: "TCP Query User{2E1753EC-5D96-43E1-9D9E-8E6B39185A9A}C:\program files (x86)\mirc\mirc.exe" | In - Private - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "UDP Query User{A1DB468A-BE58-48F4-8EA6-B9D0DD3E1A11}C:\program files (x86)\mirc\mirc.exe" | In - Private - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "TCP Query User{6A3544EA-8CA3-420E-96C0-E004AA326361}C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe (.not file.)
O87 - FAEL: "UDP Query User{0E2529BC-08E9-45DC-94E7-79B11BC82C75}C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\konami\pro evolution soccer 2010\pes2010.exe (.not file.)
O87 - FAEL: "TCP Query User{04DA2681-EFBC-4AE3-8FAC-8F21943D6E94}C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{C670AA7D-7B99-4CE5-9B35-F2D731438FEF}C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base19132\sc2.exe (.not file.)
O87 - FAEL: "{78C6898F-1852-40B7-A8CC-006749527044}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{D3192925-2025-4070-8032-E36593085328}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{629A238F-634F-41F7-8458-3DFA4B4FB432}" | In - None - P17 - TRUE | .(.Turtle Entertainment GmbH - ESL Wire Gaming Client.) -- C:\Program Files\EslWire\wire.exe
O87 - FAEL: "{37939B3F-6453-4B1A-B8C8-4AF89CBC54EE}" | Out - None - P17 - TRUE | .(.Turtle Entertainment GmbH - ESL Wire Gaming Client.) -- C:\Program Files\EslWire\wire.exe
O87 - FAEL: "{9AD2A34C-FA7B-4BA6-9A27-E1E7825CB02F}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Datamngr
O87 - FAEL: "{8B9D9FE3-67AD-48C5-A580-6075CDD69FEA}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Datamngr
O87 - FAEL: "TCP Query User{3B9E7C94-DDDA-4F8F-9E57-B63B8DF73752}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{118E53A6-7C7B-4A05-9F90-C462B2869805}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "TCP Query User{09C7D4D9-C447-4BBE-B194-7ABBF50A0078}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{98463F92-4FD7-48A8-9AFE-7E958D5FD769}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.)
O87 - FAEL: "{8EFE2B77-C63D-454F-ABEA-FA3AE282D046}" | In - Domain - P6 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{72EFD6A1-945A-4C41-A704-D4A25E7F1A62}" | In - Domain - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{62B00723-4738-450E-8B37-56EFB3AE86C1}" | In - Private - P6 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{3353028A-33B7-4F4F-A7CE-921D520E3AE2}" | In - Private - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{D114F259-9600-4D51-B4E8-717444546EC9}" | In - None - P17 - TRUE | .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "TCP Query User{14F9EBEB-B00A-472B-8C31-25BEBC97202E}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "UDP Query User{BC90C3C2-C7F8-4604-B86B-1E9FB359BAAA}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.)
O87 - FAEL: "TCP Query User{23B94E98-7C62-4AED-998E-E22042B28719}C:\program files (x86)\mirc\mirc.exe" | In - Public - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "UDP Query User{CD09A114-312F-4A8B-B4D8-766BB9706ED8}C:\program files (x86)\mirc\mirc.exe" | In - Public - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files (x86)\mirc\mirc.exe
O87 - FAEL: "{9BE0ECB0-1AC4-46FA-A2A1-6F2FD4E5EFF4}" | In - Public - P6 - FALSE | .(.Graphisoft R&D - ArchiCAD 14.0.0 Component.) -- C:\Program Files (x86)\Graphisoft\ArchiCAD 14\ArchiCAD.exe
O87 - FAEL: "{9E5152BB-1409-40D8-90F0-9F6E37A1B3FC}" | In - Public - P17 - FALSE | .(.Graphisoft R&D - ArchiCAD 14.0.0 Component.) -- C:\Program Files (x86)\Graphisoft\ArchiCAD 14\ArchiCAD.exe
O87 - FAEL: "TCP Query User{7F6FD333-0C6E-4080-BDD8-CA3C680898BA}C:\program files (x86)\graphisoft\archicad 14\archicad.exe" | In - Private - P6 - TRUE | .(.Graphisoft R&D.) -- C:\program files (x86)\graphisoft\archicad 14\archicad.exe
O87 - FAEL: "UDP Query User{AECB15CD-41C1-4FE3-A4AC-0E81AFB2E5AE}C:\program files (x86)\graphisoft\archicad 14\archicad.exe" | In - Private - P17 - TRUE | .(.Graphisoft R&D.) -- C:\program files (x86)\graphisoft\archicad 14\archicad.exe
O87 - FAEL: "{E9801906-096C-4835-8F80-2CBE3D361C97}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os8018.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{2923160F-2FDC-4ABF-AD15-2807DCF81F11}" | In - Private - P6 - TRUE | .(.TMRG, Inc. - Relevant-Knowledge.) -- C:\Users\D\AppData\Local\Temp\~os1AF4.tmp\rlvknlg.exe
O87 - FAEL: "{F7C4012A-59B7-4CAF-AAE4-53F40D3BD15F}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os9E85.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{821BD87E-E1BE-4B2D-B0E9-BEDA8FEBD600}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os5EEF.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{10C9336F-5E93-4B2F-8CC5-4B1D993AA6E3}" |In - Public - P6 - TRUE | .(...) -- C:\Users\D\AppData\Local\Temp\~os43C4.tmp\rlvknlg.exe (.not file.)
O87 - FAEL: "{DE6604B7-DA7B-4784-835E-C25950CD6885}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "{E1A2775A-BA7F-466E-9C74-3B4D41C349AB}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "TCP Query User{03A580E0-4792-499F-A476-792BF4D12855}C:\program files (x86)\relevantknowledge\rlvknlg.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\relevantknowledge\rlvknlg.exe (.not file.)
O87 - FAEL: "UDP Query User{87EE7EB1-94BD-4CD7-BD44-460B3A3CF993}C:\program files (x86)\relevantknowledge\rlvknlg.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\relevantknowledge\rlvknlg.exe (.not file.)
~ Firewall: 378 Legitimates Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : v2.11523 - (13/04/2013)
Cl�s trouv�es (Keys found) : 2
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 0
[HKCU\Software\BlabbersToolbar] =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
C:\Program Files (x86)\BrowseToSave =>Adware.Browse2Save
~ Additionnel: Scanned in 00mn 26s
---\\ Product Upgrade Codes (O90)
~ Update Products: 112 Legitimates Scanned in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 19/07/2011 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 24/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 24/10/2011 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 04/07/2013 4939312 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
SR - | Auto 23/07/2013 283136 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\Windows\System32\svchost.exe
SR - | Auto 27/08/2009 1253376 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 07/08/2008 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Demand 09/12/2008 242424 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 05/05/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 05/05/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2011 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 10/12/2012 2465712 | (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 04/12/2008 94208 | (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Auto 149872 | (InstallClick) . (...) - C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe
SR - | Demand 16/01/2012 934760 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 01/04/2009 265216 | (jswpbapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\Jumpstart\jswpbapi.exe
SS - | Demand 01/04/2009 954368 | (jswpsapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\Jumpstart\jswpsapi.exe
SR - | Auto 17/03/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - | Auto 0 | (mi-raysat_3dsmax9_32) . (...) - C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
SS - | Demand 01/09/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 0 | (Norton Internet Security) . (...) - C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
SR - | Auto 18/01/2013 884512 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 03/12/2012 1259880 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 0 | (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SR - | Auto 38608 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 16/03/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SS - | Auto 0 | (vToolbarUpdater15.5.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SS - | Auto 21/01/2008 27648 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 168864 | (WireHelpSvc) . (...) - C:\Program Files\Common Files\WireHelpSvc.exe
SR - | Auto 03/12/2009 587264 | (WkSvw32.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe
SS - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 01s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by D at 01/09/2013 13:35:49
device: opened successfully
user: error reading MBR
Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
~ MBR: 9 Legitimates Scanned in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by D at 01/09/2013 13:35:51
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s
~ 2603 Legitimates filtered by white list
End of the scan (1064 lines in 03mn 34s)(4)